This forum is in permanent archive mode. Our new active community can be found here.

Random Questions

1228229231233234246

Comments

  • There's been some decent ones in Humble Bundles.
  • Are there any singleplayer mobile games that don't suck?

    Desert Golfing.


  • Desert Golfing is my "sitting on a plane listening to audiobooks" game. After about a year I'm at hole 4,026 of 10,000. So not half way there yet. Genius game!
  • Picross e series on 3DS. Is that a mobile game?
  • I didn't even know there was an end to the Desert Golfing holes.
  • Churba said:

    Apreche said:

    Lastpass is insecure because of the mechanism it uses. The way it works is it actually STORES your passwords on the local file system.

    Are you sure? Last I remember, the only thing that's stored locally is your decryption key. You log in to lastpass, when you need your vault or something from it, it's sent to you, encrypted, via SSH, and then you decrypt locally. Lastpass never handle your keys or unencrypted data.

    Also, you have a funny, incredibly literal way that you use the word "Conceivably".
    Wait, wait, that's even worse. Lastpass is storing your passwords in an encrypted file on their servers? Sure, it's encrypted. But if there is some insecurity in LastPass' servers, then someone will have your encrypted passwords in a file. They can then spend all the time they want trying to decrypt that file and they'll have all your passwords.

    Never STORE your passwords anywhere, even in an encrypted format, except your own brain. The security of two-factor authentication comes from requiring something you have, and something you know. Once your passwords are stored somewhere, even if they are encrypted, it becomes something you have, and something you have.
  • edited November 2015
    Interesting point of view.

    But now we get down to your funny idea of "Conceivably" - Usually, we don't use that word to mean "Something that could be thought of."

    If they can break that encryption, either a)You did something super wrong and you are so fucking stupid it defeats other people's best efforts to keep you safe, or b)Encryption is literally pointless, as people can conceive of a scenario where it may be decrypted, no matter how unlikely. Sure, they have as long as they like to decrypt your password, but that doesn't matter unless you're not changing your passwords for the next few hundred thousand years.

    And of course, they'd have to be focusing on cracking your vault specifically. You, above any other data they grab, and devoting their efforts to just yours, with zero guarantee of success or reward. Because on top of the vault storage being encrypted - let's assume, however laughable, they broke that to get to the individual vaults - individual vaults are also encrypted.

    I know I've only ever worked in physical security rather than data security, but I'm told the same saying applies - Paranoia is the rational attitude, but it's only useful when mixed with reason. Pure paranoia is paralyzing.

    Also, Lastpass has 2fa, and pretty much always has. You can have multiple types of 2fa, if you wish.

    To give the absurd scenario game one last gasp - if someone was targeting you with an attack with those kind of resources behind it, they wouldn't bother with lastpass, or any other password manager. They'd just dedicate those resources to attacking your accounts directly.
    Post edited by Churba on
  • The scenario where someone cracks the encryption by brute forcing your keys specifically is not realistic. We're talking about a scenario where Lastpass itself has fucked up somehow. I simply don't trust Lastpass itself to not have fucked anything up. With these other solutions, it doesn't matter if the people providing the security measures have fucked up since there is absolutely no other way to get the password other than my brain.
  • edited November 2015
    Apreche said:

    The scenario where someone cracks the encryption by brute forcing your keys specifically is not realistic. We're talking about a scenario where Lastpass itself has fucked up somehow. I simply don't trust Lastpass itself to not have fucked anything up. With these other solutions, it doesn't matter if the people providing the security measures have fucked up since there is absolutely no other way to get the password other than my brain.

    Well that's a much simpler way to say it than throwing up worries about who has what where and how. Should have gone with that sort of clarity in the first place - start small, then expand.

    To be honest, it just depends what level of paranoia you want to set at. There's always a way to get someone's password, even if you keep them only in your brain - it's just a matter of exactly how far you want to go to make that difficult.

    And for the record - I do use lastpass, but for very few things that matter(at this time, exactly two, and none are life-changing serious or unrecoverable), and those that do have extra steps independent of Lastpass, 2FA being one example. I don't trust them that much either, but I trust them enough to handle things that don't matter that much. Stuff like my Secret World login, or my wargaming.net login, etc - things I can stand to lose it if the worst does happen.
    Post edited by Churba on
  • Apreche said:

    Picross e series on 3DS. Is that a mobile game?

    I would say no, as it isn't played on a phone, but on a seperate system you have to bring with you.
  • Also, there's some pretty good free roguelikes on Android.
  • Also, there's some pretty good free roguelikes on Android.

    Names, links?
  • Also, there's some pretty good free roguelikes on Android.

    Names, links?
    Dungeon Madness is pretty fun, though I guess its not really a true roguelike with no permadeath.

    Pixel Dungeon was alright too but there are a shitload of forks of it and I'm not sure what the differences are.

    Just search dungeon in the play store and you're bound to find one you like. They really make sense as mobile games since you don't have to deal with any virtual dpad bullshit or other weird control schemes.
  • Why didn't NASA make soylent first?
  • edited November 2015
    Pegu said:

    Why didn't NASA make soylent first?

    Because Mead Johnson & Company beat them to it in about 1960. Though, that's the first commercially available one, there were some for medical use only before that, I just can't pin down a brand or date.

    I stay the fuck away from soylent and it's defenders - they're almost as creepy and crazy as the people who are way too enthusiastic about uber. If there was a Gamergate of food, Soylent fans would be it.
    Post edited by Churba on
  • Mainly directed to @Rym @Apreche @eggs Is there a way I can get a rundown of what panels I have done at Connecticon over the years? It appears my memory/list is lacking and want to get them all.
  • Coldguy said:

    Mainly directed to @Rym @Apreche @eggs Is there a way I can get a rundown of what panels I have done at Connecticon over the years? It appears my memory/list is lacking and want to get them all.

    That would take some doing for years before the new web site, but I could probably get one together of everything SINCE then.

  • Rym said:

    Coldguy said:

    Mainly directed to @Rym @Apreche @eggs Is there a way I can get a rundown of what panels I have done at Connecticon over the years? It appears my memory/list is lacking and want to get them all.

    That would take some doing for years before the new web site, but I could probably get one together of everything SINCE then.

    I understand that is going to be a factor but any information would be great if you can pull it up when you get a chance.
  • Rym said:

    Coldguy said:

    Mainly directed to @Rym @Apreche @eggs Is there a way I can get a rundown of what panels I have done at Connecticon over the years? It appears my memory/list is lacking and want to get them all.

    That would take some doing for years before the new web site, but I could probably get one together of everything SINCE then.

    I have panel records on Google Drive going back to 2012. The website archives were reset when we switched over to the new design.
  • AmpAmp
    edited November 2015
    So I have an interview coming up for a company based in Japan. Aside from standard stuff is there any specific advice I could get from people who have been had interviews before? ie what sort of stuff is looked at more, are their certain skills that are more desired?

    Edit; could have written that better, like is there a different formant for resumes or does it not matter?
    Post edited by Amp on
  • Japanese companies like a picture (headshot in a suit) to be included with your resume, especially if you'll be interacting with customers in any capacity. What kind of job are you applying for? When you say 'based in Japan', do you mean that it's western people with a company in Japan or a Japanese company? Likewise, is a western or Japanese person going to be interviewing you?
  • I second @Ruffas on the photo, I had to put one in when I got my position in Singapore.

    The position that I didn't get a job at didn't understand how I could demand more money for being asked to do 10 more hours a week.

    They tend to work on a salary only basis and try to make up with non monetary work benefits such as free travel or air flights.

    The latter point not be specific to Japan though.
  • Its a teaching gig for schools so yeah looks like I have to get suited and booted, and get rid of my beard.
    It looks like it is a mix of the two, the have offices in the UK and US but seem based in Japan. The guy interviewing me is from the UK.
  • I also have to make a one hour lesson plan.
  • Here is a link to a podcast episode about getting a job in Japan. The two host of the show lived and worked there both as teachers. http://www.aaapodcast.com/archives/70998
  • Here is a link to a podcast episode about getting a job in Japan. The two host of the show lived and worked there both as teachers. http://www.aaapodcast.com/archives/70998

    That is grand thank you.
  • edited November 2015
    @Amp you definitely want to have a picture with your resume in the upper corner sans beard (I would also attach a semi-casual picture since many jobs will require it, and my boss told me that mine was one of the reasons they chose me). You probably won't have to demonstrate the full lesson, but something about your city/state and what makes it unique will probably be good since you'll be using it at every school you work at. If you're applying to be an ALT (English teacher in Japanese public schools), the main thing will probably be that you're super energetic, and even if it's a private school, You should come up with a good reason why you want to teach in Japan. You also shouldn't accept a job that is paying less that 250k per month (more in a big city).

    If you have more specific questions (such as the reputation of X school), ask, and I'll be happy to answer.
    Post edited by Ruffas on
  • Thats great cheers man. Yeah I thought the beard would have to go, the kicker being that it has been about six years since I didn't have one. Oh well, I will certainly drop you a message if more questions come up. Thank you very much.
  • Wondering if someone has some information about this because it's surprisingly hard to get a straight answer about this from a Google search. My Dad has a Roku and I was looking to get him a year of HBO Now as a Christmas present but I'm not sure how this actually works, or if it's possible. Through certain avenues it seems easier than others. For example you can "subscribe" through the app store and thus could pay a sub through iTunes gift cards, but I don't know how the Roku operates. Anyone have any information about how I would go about doing this? I would assume it makes more sense if you are familiar with the Roku interface.
Sign In or Register to comment.