#IdentityManagement

Marco Ciappelli🎙️✨:verified: :donor:🎯 FINAL POST FROM THE FLOOR: <a href="https://infosec.exchange/tags/BlackHatUSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlackHatUSA</a> 2025 Coverage!Access Roulette: How to Stop Betting Your Security on Standing PrivilegesThis wraps up our on-location content from Las Vegas! Next week we'll reconnect with our main event sponsors— BLACKCLOAK, Dropzone AI, Stellar Cyber, and Akamai Technologies—to bring you their post-event insights and feedback. Of course ThreatLocker's recap was already captured on the floor and published earlier today. Plus, watch for our closing reflection articles from me Marco Ciappelli and Sean Martin, CISSP!Our final floor conversation comes thanks to our friends at Apono 🙏Modern enterprises are gambling with security every day. Static permissions, manual approvals, and periodic audits create "privilege creep" that turns every over-privileged account into a potential breach waiting to happen. At <a href="https://infosec.exchange/tags/BlackHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlackHat</a> USA 2025, Ofir Stein from <a href="https://infosec.exchange/tags/Apono" class="mention hashtag" rel="nofollow noopener" target="_blank">#Apono</a> reveals how to break this dangerous cycle.The stakes keep rising: • Non-human identities (service accounts, <a href="https://infosec.exchange/tags/APIs" class="mention hashtag" rel="nofollow noopener" target="_blank">#APIs</a>, <a href="https://infosec.exchange/tags/AIagents" class="mention hashtag" rel="nofollow noopener" target="_blank">#AIagents</a>) retain high-level privileges long after tasks complete • Organizations discover risks during audits but lack scalable remediation • <a href="https://infosec.exchange/tags/Business" class="mention hashtag" rel="nofollow noopener" target="_blank">#Business</a> teams need rapid access while security teams battle expanding <a href="https://infosec.exchange/tags/attacksurfaces" class="mention hashtag" rel="nofollow noopener" target="_blank">#attacksurfaces</a> Apono's Zero Standing Privilege model: • Removes ALL permanent access by default • Grants access dynamically based on business context • Automatically revokes permissions when tasks complete • Works for both human AND non-human identities • Integrates with existing <a href="https://infosec.exchange/tags/identity" class="mention hashtag" rel="nofollow noopener" target="_blank">#identity</a> providers—no rip and replaceKey capabilities: • Context-based policy management aligned with business objectives • Continuous discovery of identities, privileges • Automated remediation of unnecessary privileges • Real-time anomaly detection feeding <a href="https://infosec.exchange/tags/SOC" class="mention hashtag" rel="nofollow noopener" target="_blank">#SOC</a> workflows • Scalable across centralized and decentralized environmentsThe result? Engineers gain control over their access (building trust), security teams maintain tight governance, and organizations can finally stop betting their security on standing privileges.📺 Watch the video: <a href="https://youtu.be/ciBsH84PVQU" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/ciBsH84PVQU</a>🎧 Listen to the podcast: <a href="https://brand-stories-podcast.simplecast.com/episodes/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story-HD5Uq_kf" rel="nofollow noopener" translate="no" target="_blank">https://brand-stories-podcast.simplecast.com/episodes/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story-HD5Uq_kf</a>📖 Read the blog: <a href="https://www.itspmagazine.com/their-stories/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/their-stories/access-roulette-how-to-stop-betting-your-security-on-standing-privileges-a-brand-story-with-ofir-stein-cto-and-co-founder-of-apono-a-black-hat-usa-2025-conference-on-location-brand-story</a>➤ Learn more about Apono: <a href="https://itspm.ag/apono-1034" rel="nofollow noopener" translate="no" target="_blank">https://itspm.ag/apono-1034</a>✦ Catch more stories from Apono: <a href="https://www.itspmagazine.com/directory/apono" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/directory/apono</a>🎪 Follow all of our <a href="https://infosec.exchange/tags/BHUSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#BHUSA</a> 2025 coverage: <a href="https://www.itspmagazine.com/bhusa25" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/bhusa25</a><a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#ZeroTrust</a> <a href="https://infosec.exchange/tags/AccessControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#AccessControl</a> <a href="https://infosec.exchange/tags/BlackHatUSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlackHatUSA</a> <a href="https://infosec.exchange/tags/BHUSA25" class="mention hashtag" rel="nofollow noopener" target="_blank">#BHUSA25</a> <a href="https://infosec.exchange/tags/PrivilegeManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#PrivilegeManagement</a> <a href="https://infosec.exchange/tags/IAM" class="mention hashtag" rel="nofollow noopener" target="_blank">#IAM</a> <a href="https://infosec.exchange/tags/SecurityAutomation" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecurityAutomation</a> <a href="https://infosec.exchange/tags/NonHumanIdentities" class="mention hashtag" rel="nofollow noopener" target="_blank">#NonHumanIdentities</a>

Marco Ciappelli🎙️✨:verified: :donor:Monday news from ITSPmagazine 🙂 <a href="https://infosec.exchange/tags/happymonday" class="mention hashtag" rel="nofollow noopener" target="_blank">#happymonday</a>!Join Marc Manzano, Sean Martin, CISSP and me on this week SandboxAQ Webinar! After an incredible conversation with Marc on the <a href="https://infosec.exchange/tags/RSAC" class="mention hashtag" rel="nofollow noopener" target="_blank">#RSAC</a> floor in San Francisco — where Sean and I used every second of our time and still had more to explore — I knew the <a href="https://infosec.exchange/tags/Sandbox" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sandbox</a> Story couldn’t stop there.If you missed that on-location episode from <a href="https://infosec.exchange/tags/RSAC2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#RSAC2025</a>, catch it here:👉 Security at the Edge of Change – A Brand Story with Marc Manzano from SandboxAQ<a href="https://www.itspmagazine.com/their-stories/security-at-the-edge-of-change-preparing-for-the-cryptographic-and-ai-tipping-point-a-brand-story-with-marc-manzano-from-sandboxaq-an-on-location-rsac-conference-2025-brand-story" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/their-stories/security-at-the-edge-of-change-preparing-for-the-cryptographic-and-ai-tipping-point-a-brand-story-with-marc-manzano-from-sandboxaq-an-on-location-rsac-conference-2025-brand-story</a>Now, we’re keeping the momentum going with a live ITSPmagazine webinar you don’t want to miss — and I won’t either. 🤘😬 🔐 How To Detect And Mitigate Non-Human Identity And Cryptographic Vulnerabilities | An ITSPmagazine Webinar with SandboxAQJoin Marc, Sean, and me as we dig deeper into how SandboxAQ is tackling one of today’s most urgent security challenges.Unmanaged cryptographic assets and non-human identities have left security teams blind to critical risks. These gaps have fueled vulnerabilities, breaches, compliance challenges, and operational drag across enterprise environments.By attending, you’ll:🔸 Gain visibility into cryptographic assets and non-human identities like API keys, certificates, and service accounts🔸 See how <a href="https://infosec.exchange/tags/AQtiveGuard" class="mention hashtag" rel="nofollow noopener" target="_blank">#AQtiveGuard</a> enables automated discovery, threat detection, and root cause analysis without disrupting workflows🔸 Learn how to future-proof your security with Post-Quantum Cryptography readiness and AI-powered <a href="https://infosec.exchange/tags/SecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecOps</a>📌 Learn more:👉 <a href="https://www.itspmagazine.com/itspmagazine-webinar-calendar/how-to-detect-and-mitigate-non-human-identity-and-crytographic-vulnerabilities-an-itspmagazine-webinar-with-sandboxaq" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/itspmagazine-webinar-calendar/how-to-detect-and-mitigate-non-human-identity-and-crytographic-vulnerabilities-an-itspmagazine-webinar-with-sandboxaq</a>📅 REGISTER NOW:Can’t attend the live webinar? All registrants get exclusive access with a link to rewatch the recording.👉 <a href="https://www.crowdcast.io/c/how-to-detect-and-mitigate-non-human-identity-and-crytographic-vulnerabilities-an-itspmagazine-webinar-with-sandboxaq" rel="nofollow noopener" translate="no" target="_blank">https://www.crowdcast.io/c/how-to-detect-and-mitigate-non-human-identity-and-crytographic-vulnerabilities-an-itspmagazine-webinar-with-sandboxaq</a>Share the news and join us!See you live on Thursday! <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a><a href="https://infosec.exchange/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a><a href="https://infosec.exchange/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#tech</a><a href="https://infosec.exchange/tags/infosecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosecurity</a><a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#AIsecurity</a><a href="https://infosec.exchange/tags/postquantum" class="mention hashtag" rel="nofollow noopener" target="_blank">#postquantum</a><a href="https://infosec.exchange/tags/cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#cryptography</a><a href="https://infosec.exchange/tags/identitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#identitymanagement</a><a href="https://infosec.exchange/tags/webinar" class="mention hashtag" rel="nofollow noopener" target="_blank">#webinar</a>

Jonathan Kamens 86 47Damn, I expect an <a href="https://federate.social/tags/identityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#identityManagement</a> company like <a href="https://federate.social/tags/Yubico" class="mention hashtag" rel="nofollow noopener" target="_blank">#Yubico</a> to know better than to give people bad, outdated advice to "rotate passwords." If you are using random, unique passwords stored in a password manager and using MFA wherever it's available (which is pretty much all sensitive sites nowadays!), there's no reason to rotate passwords that haven't been compromised. Telling people to do so decreases security rather than increasing it. <a href="https://federate.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://federate.social/tags/BeIdentitySmart" class="mention hashtag" rel="nofollow noopener" target="_blank">#BeIdentitySmart</a> Ref: <a href="https://www.yubico.com/blog/5-fast-cybersecurity-tips-to-clean-up-your-digital-life/" rel="nofollow noopener" translate="no" target="_blank">https://www.yubico.com/blog/5-fast-cybersecurity-tips-to-clean-up-your-digital-life/</a>

Lanie Molinar CarmeloI'm curious to hear what others are <a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHosting</a>! Here's my current setup:Hardware & OS<ul><li>Hardware: <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener" target="_blank">#RaspberryPi500</a> (8 GB RAM, 512 GB SD card) <a href="https://allovertheplace.ca/tags/RPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#RPi</a> <a href="https://allovertheplace.ca/tags/RPi500" class="mention hashtag" rel="nofollow noopener" target="_blank">#RPi500</a> <a href="https://allovertheplace.ca/tags/SingleBoardComputers" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleBoardComputers</a> <a href="https://allovertheplace.ca/tags/HomeLab" class="mention hashtag" rel="nofollow noopener" target="_blank">#HomeLab</a></li><li>OS: <a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Stormux</a>, an accessible <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> distro based on <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener" target="_blank">#ArchLinuxARM</a> <a href="https://allovertheplace.ca/tags/LinuxAccessibility" class="mention hashtag" rel="nofollow noopener" target="_blank">#LinuxAccessibility</a> <a href="https://allovertheplace.ca/tags/AccessibleTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#AccessibleTech</a></li></ul>Infrastructure & Networking<ul><li>Dashboard: <a href="https://allovertheplace.ca/tags/Glance" class="mention hashtag" rel="nofollow noopener" target="_blank">#Glance</a> (<a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#Docker</a>) <a href="https://allovertheplace.ca/tags/DockerApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DockerApps</a></li><li>Reverse Proxy: <a href="https://allovertheplace.ca/tags/Caddy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Caddy</a></li><li>DNS: <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloudflare</a></li><li>Domain Registrar: <a href="https://allovertheplace.ca/tags/Porkbun" class="mention hashtag" rel="nofollow noopener" target="_blank">#Porkbun</a></li><li>Networking & Remote Access: <a href="https://allovertheplace.ca/tags/Tailscale" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tailscale</a> (non-Docker), love its SSH agent and magic DNS features. <a href="https://allovertheplace.ca/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetworkSecurity</a></li></ul>Security & Monitoring<ul><li>Ad Blocking: <a href="https://allovertheplace.ca/tags/AdGuardHome" class="mention hashtag" rel="nofollow noopener" target="_blank">#AdGuardHome</a> (non-Docker). Previously used PiHole but find AdGuardHome slightly faster. <a href="https://allovertheplace.ca/tags/PrivacyTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#PrivacyTools</a></li><li>Server Monitoring: <a href="https://allovertheplace.ca/tags/Beszel" class="mention hashtag" rel="nofollow noopener" target="_blank">#Beszel</a> (non-Docker). Tried Grafana/Prometheus/Alertmanager (accessible but overkill) and Netdata (poor screen reader accessibility). Beszel isn't perfect but best compromise so far. <a href="https://allovertheplace.ca/tags/ServerMonitoring" class="mention hashtag" rel="nofollow noopener" target="_blank">#ServerMonitoring</a></li><li>Server Overview: <a href="https://allovertheplace.ca/tags/Cockpit" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cockpit</a> (non-Docker)</li><li>Security Tools: <a href="https://allovertheplace.ca/tags/Fail2ban" class="mention hashtag" rel="nofollow noopener" target="_blank">#Fail2ban</a>, <a href="https://allovertheplace.ca/tags/FirewallD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FirewallD</a>, <a href="https://allovertheplace.ca/tags/ClamAV" class="mention hashtag" rel="nofollow noopener" target="_blank">#ClamAV</a>, and <a href="https://allovertheplace.ca/tags/Rkhunter" class="mention hashtag" rel="nofollow noopener" target="_blank">#Rkhunter</a> (non-Docker). Tried CrowdSec but couldn't get it working on Stormux. <a href="https://allovertheplace.ca/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a></li><li>Service Uptime Monitoring: <a href="https://allovertheplace.ca/tags/UptimeKuma" class="mention hashtag" rel="nofollow noopener" target="_blank">#UptimeKuma</a> (Docker), accessible and easy to use. <a href="https://allovertheplace.ca/tags/MonitoringTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#MonitoringTools</a></li></ul>Authentication & Identity Management<ul><li>Authelia (Docker): Just set this up for two-factor authentication and single sign-on. Seems to be working well so far! </li><li>LLDAP (Docker): Lightweight LDAP server for managing authentication. Also seems to be working pretty well! <a href="https://allovertheplace.ca/tags/AuthenticationTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#AuthenticationTools</a> <a href="https://allovertheplace.ca/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a></li></ul>Productivity & Personal Tools<ul><li>Docker Management: <a href="https://allovertheplace.ca/tags/Dockge" class="mention hashtag" rel="nofollow noopener" target="_blank">#Dockge</a> (Docker). More accessible than Portainer; main issue is built-in terminal isn't readable with screen readers. <a href="https://allovertheplace.ca/tags/DockerCompose" class="mention hashtag" rel="nofollow noopener" target="_blank">#DockerCompose</a></li><li>Docker Logs Viewer: <a href="https://allovertheplace.ca/tags/Dozzle" class="mention hashtag" rel="nofollow noopener" target="_blank">#Dozzle</a> (Docker), great web interface and easy searching.</li><li>Git Hosting: <a href="https://allovertheplace.ca/tags/Forgejo" class="mention hashtag" rel="nofollow noopener" target="_blank">#Forgejo</a> (non-Docker), my personal Git server. <a href="https://allovertheplace.ca/tags/GitServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#GitServer</a></li><li>Backups: <a href="https://allovertheplace.ca/tags/IDrive" class="mention hashtag" rel="nofollow noopener" target="_blank">#IDrive</a> (non-Docker), backs up all my devices easily. <a href="https://allovertheplace.ca/tags/BackupSolutions" class="mention hashtag" rel="nofollow noopener" target="_blank">#BackupSolutions</a></li><li>Notes: <a href="https://allovertheplace.ca/tags/Joplin" class="mention hashtag" rel="nofollow noopener" target="_blank">#Joplin</a> server (Docker). Accessibility improving; love the VSCode extension. <a href="https://allovertheplace.ca/tags/NoteTakingApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#NoteTakingApps</a></li><li>Bookmarks: <a href="https://allovertheplace.ca/tags/Linkding" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linkding</a> (Docker). Accessible bookmark manager with good browser extension support. <a href="https://allovertheplace.ca/tags/BookmarkManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#BookmarkManager</a></li><li>Recipes: <a href="https://allovertheplace.ca/tags/Mealie" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mealie</a> (Docker), starting to learn cooking! 🍳📖  <a href="https://allovertheplace.ca/tags/CookingApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#CookingApps</a></li><li>RSS Feeds: <a href="https://allovertheplace.ca/tags/Miniflux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Miniflux</a> (non-Docker), excellent accessibility. Originally wanted better podcast support but other options had major accessibility issues. <a href="https://allovertheplace.ca/tags/RSSReader" class="mention hashtag" rel="nofollow noopener" target="_blank">#RSSReader</a></li><li>Automation & Workflows: <a href="https://allovertheplace.ca/tags/N8N" class="mention hashtag" rel="nofollow noopener" target="_blank">#N8N</a> (Docker). Haven't explored deeply yet—open to ideas! <a href="https://allovertheplace.ca/tags/AutomationTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#AutomationTools</a> <a href="https://allovertheplace.ca/tags/WorkflowAutomation" class="mention hashtag" rel="nofollow noopener" target="_blank">#WorkflowAutomation</a></li><li>Pastebin Service: <a href="https://allovertheplace.ca/tags/PrivateBin" class="mention hashtag" rel="nofollow noopener" target="_blank">#PrivateBin</a> (non-Docker). Considering alternatives or CLI tool for easier console access. <a href="https://allovertheplace.ca/tags/PastebinAlternative" class="mention hashtag" rel="nofollow noopener" target="_blank">#PastebinAlternative</a></li><li>File Sharing & Editing: <a href="https://allovertheplace.ca/tags/Samba" class="mention hashtag" rel="nofollow noopener" target="_blank">#Samba</a> (non-Docker), easy file management from my Windows 11 mini PC. <a href="https://allovertheplace.ca/tags/FileSharing" class="mention hashtag" rel="nofollow noopener" target="_blank">#FileSharing</a> <a href="https://allovertheplace.ca/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#Windows11</a></li><li>Search Engine: <a href="https://allovertheplace.ca/tags/SearXNG" class="mention hashtag" rel="nofollow noopener" target="_blank">#SearXNG</a> (non-Docker), accessible and searches multiple engines at once. <a href="https://allovertheplace.ca/tags/PrivacySearchEngine" class="mention hashtag" rel="nofollow noopener" target="_blank">#PrivacySearchEngine</a></li><li>IRC Client: <a href="https://allovertheplace.ca/tags/TheLounge" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheLounge</a> (non-Docker). Some accessibility issues but best I've found so far for always-connected IRC. <a href="https://allovertheplace.ca/tags/IRCClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#IRCClient</a></li><li>Read Later Service: <a href="https://allovertheplace.ca/tags/Wallabag" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wallabag</a> (Docker). Biggest issue is Wallabagger Chrome extension doesn't work for me yet. <a href="https://allovertheplace.ca/tags/ReadItLater" class="mention hashtag" rel="nofollow noopener" target="_blank">#ReadItLater</a></li></ul>Notifications & Development Workflow<ul><li>Notifications via: <a href="https://allovertheplace.ca/tags/Ntfy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ntfy</a> (Docker) and Zoho's ZeptoMail (<a href="https://allovertheplace.ca/tags/Zoho" class="mention hashtag" rel="nofollow noopener" target="_blank">#Zoho</a>)</li><li>Development Environment: Mostly using VSCode connected to my server via Remote-SSH extension. <a href="https://allovertheplace.ca/tags/VSCodeRemote" class="mention hashtag" rel="nofollow noopener" target="_blank">#VSCodeRemote</a></li></ul>Accessibility Focus ♿️🖥️Accessibility heavily influences my choices—I use a screen reader full-time (<a href="https://allovertheplace.ca/tags/ScreenReader" class="mention hashtag" rel="nofollow noopener" target="_blank">#ScreenReader</a>), so I prioritize services usable without sight (<a href="https://allovertheplace.ca/tags/InclusiveDesign" class="mention hashtag" rel="nofollow noopener" target="_blank">#InclusiveDesign</a>, <a href="https://allovertheplace.ca/tags/DigitalAccessibility" class="mention hashtag" rel="nofollow noopener" target="_blank">#DigitalAccessibility</a>). Always open to discussing accessibility experiences or recommendations!I've also experimented with:<ul><li>Ollama (<a href="https://allovertheplace.ca/tags/Ollama" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ollama</a>): Not enough RAM on my Pi.</li><li>Habit trackers like Beaver Habit Tracker (<a href="https://allovertheplace.ca/tags/HabitTracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#HabitTracking</a>): Accessibility issues made it unusable for me.</li></ul>I don't really have a media collection, so no Plex or Jellyfin here (<a href="https://allovertheplace.ca/tags/MediaServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#MediaServer</a>)—but I'm always open to suggestions! I've gotten a bit addicted to exploring new self-hosted services! 😄What's your setup like? Any cool services you'd recommend I try?<a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHosted</a> <a href="https://allovertheplace.ca/tags/LinuxSelfHost" class="mention hashtag" rel="nofollow noopener" target="_blank">#LinuxSelfHost</a> <a href="https://allovertheplace.ca/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> <a href="https://allovertheplace.ca/tags/TechCommunity" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechCommunity</a> <a href="https://allovertheplace.ca/tags/FOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#FOSS</a> <a href="https://allovertheplace.ca/tags/TechDIY" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechDIY</a><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener" target="_blank">@selfhost</a> <a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener" target="_blank">@selfhosted</a> <a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener" target="_blank">@selfhosting</a>

heise SecurityStudie: Unternehmen an Feiertagen und Wochenenden anfälliger für CyberangriffeGerade an Wochenenden und Feiertagen erleben Unternehmen häufig Cyberangriffe. Das geht aus einer Befragung hervor.<a href="https://www.heise.de/news/Studie-Unternehmen-an-Feiertagen-und-Wochenenden-anfaelliger-fuer-Cyberangriffe-10077441.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/Studie-Unternehmen-an-Feiertagen-und-Wochenenden-anfaelliger-fuer-Cyberangriffe-10077441.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/Cyberangriff" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberangriff</a> <a href="https://social.heise.de/tags/EntraID" class="mention hashtag" rel="nofollow noopener" target="_blank">#EntraID</a> <a href="https://social.heise.de/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

Miguel Afonso Caetano<a href="https://tldr.nettime.org/tags/SocialMedia" class="mention hashtag" rel="nofollow noopener" target="_blank">#SocialMedia</a> <a href="https://tldr.nettime.org/tags/DigitalIDs" class="mention hashtag" rel="nofollow noopener" target="_blank">#DigitalIDs</a> <a href="https://tldr.nettime.org/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://tldr.nettime.org/tags/IdentityVerification" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityVerification</a>: "Social media platforms have always served as mediators between people’s online identities. This has been noted by countless scholars of early social media (including Zizi Papacharissi, Nicole Ellison, danah boyd, and Alice Marwick) who study identity and self-presentation online. Allison Hearn’s work on the verified badge has explored this symbol’s relationship to self-presentation and identity management, looking specifically at the role that platforms like Twitter have come to play within the “identity management and verification market.” Emily van der Nagel has explored this dimension of verification as identification, or rather the “confirmation that an account is linked to a particular person.” Work in this area often centers on the “real name policies” adopted by social media companies during the early-to-mid period of Web 2.0, and the issues these policies posed for privacy and freedom of expression. Perhaps the most famous of these conflicts — known as the “nymwars” — emerged from a battle between proponents of online pseudonymity and Google’s brief attempt at a social media network, Google+, which required that users provide their “real names.” (As danah boyd argued at the time, the ire was overly focused on Google, when Facebook also had a damaging real names policy.)But to understand the verified badge — the blue check as it emerged as a symbol not only of how platforms mediate identity, but also of power and status, and where those concepts meet — we need to go back to a conflict just slightly earlier in the history of social media: the battle between Friendsters and Fakesters."<a href="https://datasociety.net/points/a-working-history-of-the-verified-internet-2/" rel="nofollow noopener" translate="no" target="_blank">https://datasociety.net/points/a-working-history-of-the-verified-internet-2/</a>

Ænðr E. FeldstrawRecommended reading, as linked from the article as its source: <a href="http://www.datagenetics.com/blog/september32012/index.html" rel="nofollow noopener" translate="no" target="_blank">http://www.datagenetics.com/blog/september32012/index.html</a> <a href="https://mastodon.social/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/identitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#identitymanagement</a>

ITSPmagazine 🎙️✨:verified:🎙️ ✨ A new episode has been published on <a href="https://techhub.social/@ITSPmagazine" class="u-url mention" rel="nofollow noopener" target="_blank">@ITSPmagazine</a> Show: Redefining Society With <a href="https://infosec.exchange/@Marcociappelli" class="u-url mention" rel="nofollow noopener" target="_blank">@Marcociappelli</a> Episode: Navigating the Complex World of Identity Security and introducing IDENTITY MANAGEMENT DAY 2024Guest: IDSA Executive Director, Jeff ReichPodcast format: Video & Audio<a href="https://techhub.social/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://techhub.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://techhub.social/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> <a href="https://techhub.social/tags/society" class="mention hashtag" rel="nofollow noopener" target="_blank">#society</a> <a href="https://techhub.social/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#technology</a> <a href="https://techhub.social/tags/podcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#podcast</a>Enjoy!👉 <a href="https://www.youtube.com/watch?v=gcuLJ5YTvy8" rel="nofollow noopener" translate="no" target="_blank">https://www.youtube.com/watch?v=gcuLJ5YTvy8</a>If you prefer to listen to the audio podcast, enjoy it here 👇 <a href="https://itsprad.io/redefiningsociety-129" rel="nofollow noopener" translate="no" target="_blank">https://itsprad.io/redefiningsociety-129</a>To learn more about Marco and this podcast, visit the page here 👇 <a href="https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli</a>

heise SecurityMastodon: Diebstahl beliebiger Identitäten im föderierten KurznachrichtendienstIn einem knappen Sicherheitshinweis lassen die Entwickler eine Bombe platzen: Angreifer können jeden beliebigen Account übernehmen und fälschen. <a href="https://www.heise.de/news/Mastodon-Diebstahl-beliebiger-Identitaeten-im-foederierten-Kurznachrichtendienst-9615961.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/Mastodon-Diebstahl-beliebiger-Identitaeten-im-foederierten-Kurznachrichtendienst-9615961.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege</a><a href="https://social.heise.de/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://social.heise.de/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mastodon</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

heise SecurityJobsuche: Verbraucherzentrale warnt vor IdentitätsdiebstahlDie Verbraucherzentrale NRW warnt vor gefälschten Stellenanzeigen. Cyberkriminelle versuchten damit, an Daten von Opfern zu gelangen.<a href="https://www.heise.de/news/Jobsuche-Verbraucherzentrale-warnt-vor-Identitaetsdiebstahl-9335278.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege" rel="nofollow noopener" translate="no" target="_blank">https://www.heise.de/news/Jobsuche-Verbraucherzentrale-warnt-vor-Identitaetsdiebstahl-9335278.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege</a><a href="https://social.heise.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybercrime</a> <a href="https://social.heise.de/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://social.heise.de/tags/Karriere" class="mention hashtag" rel="nofollow noopener" target="_blank">#Karriere</a> <a href="https://social.heise.de/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Phishing</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

Michael :donor:Question about implementation of <a href="https://infosec.exchange/tags/Passkeys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Passkeys</a>. As I understand it, having a user login with passkey but without UV (User Verification) is not necessarily MFA as it could just be a stolen security key (Something you have). How is (or should) <a href="https://infosec.exchange/tags/MFA" class="mention hashtag" rel="nofollow noopener" target="_blank">#MFA</a> with Passkeys implemented in practice? By setting UV as "required"? Or by setting UV as "preferred" and then based on the user response prompt for another factor (eg. <a href="https://infosec.exchange/tags/TOTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#TOTP</a>) in case there was no UV? I am a bit confused about how to fit Passkeys into the current <a href="https://infosec.exchange/tags/authentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#authentication</a> logic.<a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwords</a> <a href="https://infosec.exchange/tags/fido" class="mention hashtag" rel="nofollow noopener" target="_blank">#fido</a> <a href="https://infosec.exchange/tags/fido2" class="mention hashtag" rel="nofollow noopener" target="_blank">#fido2</a> <a href="https://infosec.exchange/tags/webauthn" class="mention hashtag" rel="nofollow noopener" target="_blank">#webauthn</a> <a href="https://infosec.exchange/tags/identitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#identitymanagement</a> <a href="https://infosec.exchange/tags/iam" class="mention hashtag" rel="nofollow noopener" target="_blank">#iam</a> <a href="https://infosec.exchange/tags/oauth" class="mention hashtag" rel="nofollow noopener" target="_blank">#oauth</a> <a href="https://infosec.exchange/tags/openid" class="mention hashtag" rel="nofollow noopener" target="_blank">#openid</a>

Christian Pietsch (old acct.)<a href="https://nrw.social/@ivo" class="u-url mention" rel="nofollow noopener" target="_blank">@ivo</a>Aber warum gehst du eigentlich davon aus, dass Schulen das Microsoft-Produkt <a href="https://digitalcourage.social/tags/ActiveDirectory" class="mention hashtag" rel="nofollow noopener" target="_blank">#ActiveDirectory</a> fürs <a href="https://digitalcourage.social/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> nutzen? Dazu gäbe es doch gute Alternativen in Freier Software.<a href="https://digitalcourage.social/@digitalcourage" class="u-url mention" rel="nofollow noopener" target="_blank">@digitalcourage</a>

c't Magazinheise+ | IT-Security: Wie Angreifer die Zwei-Faktor-Authentifizierung aushebelnInzwischen können Angreifer viele Zwei-Faktor-Verfahren trickreich aushebeln. Vor welchen Angriffen Sie sich in Acht nehmen müssen und wie Sie sich schützen.<a href="https://www.heise.de/ratgeber/IT-Security-Wie-Angreifer-die-Zwei-Faktor-Authentifizierung-aushebeln-8973846.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege" rel="nofollow noopener" target="_blank">https://www.heise.de/ratgeber/IT-Security-Wie-Angreifer-die-Zwei-Faktor-Authentifizierung-aushebeln-8973846.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege</a><a href="https://social.heise.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybercrime</a> <a href="https://social.heise.de/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://social.heise.de/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a> <a href="https://social.heise.de/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentityManagement</a> <a href="https://social.heise.de/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#Phishing</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

Kudra :maybe_verified:btw, as something of an <a href="https://aus.social/tags/introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#introduction</a>, if any new users (or returnees like mahself) want to follow me I may post in the future about things like:<a href="https://aus.social/tags/EVsforall" class="mention hashtag" rel="nofollow noopener" target="_blank">#EVsforall</a> <a href="https://aus.social/tags/electricvehicles" class="mention hashtag" rel="nofollow noopener" target="_blank">#electricvehicles</a> <a href="https://aus.social/tags/ebikes" class="mention hashtag" rel="nofollow noopener" target="_blank">#ebikes</a> <a href="https://aus.social/tags/mistubishi" class="mention hashtag" rel="nofollow noopener" target="_blank">#mistubishi</a> <a href="https://aus.social/tags/minicabMiEV" class="mention hashtag" rel="nofollow noopener" target="_blank">#minicabMiEV</a> <a href="https://aus.social/tags/auspol" class="mention hashtag" rel="nofollow noopener" target="_blank">#auspol</a> <a href="https://aus.social/tags/climatechange" class="mention hashtag" rel="nofollow noopener" target="_blank">#climatechange</a> <a href="https://aus.social/tags/4dayworkweek" class="mention hashtag" rel="nofollow noopener" target="_blank">#4dayworkweek</a> <a href="https://aus.social/tags/identitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#identitymanagement</a> <a href="https://aus.social/tags/melbourne" class="mention hashtag" rel="nofollow noopener" target="_blank">#melbourne</a> <a href="https://aus.social/tags/Australia" class="mention hashtag" rel="nofollow noopener" target="_blank">#Australia</a> <a href="https://aus.social/tags/thailand" class="mention hashtag" rel="nofollow noopener" target="_blank">#thailand</a> <a href="https://aus.social/tags/srilanka" class="mention hashtag" rel="nofollow noopener" target="_blank">#srilanka</a> <a href="https://aus.social/tags/burningman" class="mention hashtag" rel="nofollow noopener" target="_blank">#burningman</a> <a href="https://aus.social/tags/art" class="mention hashtag" rel="nofollow noopener" target="_blank">#art</a> <a href="https://aus.social/tags/parenting" class="mention hashtag" rel="nofollow noopener" target="_blank">#parenting</a> <a href="https://aus.social/tags/parentinghacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#parentinghacks</a> <a href="https://aus.social/tags/embryoadoption" class="mention hashtag" rel="nofollow noopener" target="_blank">#embryoadoption</a> <a href="https://aus.social/tags/embryology" class="mention hashtag" rel="nofollow noopener" target="_blank">#embryology</a> <a href="https://aus.social/tags/neurobiology" class="mention hashtag" rel="nofollow noopener" target="_blank">#neurobiology</a> <a href="https://aus.social/tags/physiology" class="mention hashtag" rel="nofollow noopener" target="_blank">#physiology</a> <a href="https://aus.social/tags/ElectricMotorcycles" class="mention hashtag" rel="nofollow noopener" target="_blank">#ElectricMotorcycles</a> <a href="https://aus.social/tags/electricbikes" class="mention hashtag" rel="nofollow noopener" target="_blank">#electricbikes</a> <a href="https://aus.social/tags/goth" class="mention hashtag" rel="nofollow noopener" target="_blank">#goth</a> <a href="https://aus.social/tags/homerenovation" class="mention hashtag" rel="nofollow noopener" target="_blank">#homerenovation</a> <a href="https://aus.social/tags/bushwalking" class="mention hashtag" rel="nofollow noopener" target="_blank">#bushwalking</a> <a href="https://aus.social/tags/batterytechnology" class="mention hashtag" rel="nofollow noopener" target="_blank">#batterytechnology</a> <a href="https://aus.social/tags/offgrid" class="mention hashtag" rel="nofollow noopener" target="_blank">#offgrid</a> <a href="https://aus.social/tags/sustainability" class="mention hashtag" rel="nofollow noopener" target="_blank">#sustainability</a> <a href="https://aus.social/tags/worklifebalance" class="mention hashtag" rel="nofollow noopener" target="_blank">#worklifebalance</a> <a href="https://aus.social/tags/degrowth" class="mention hashtag" rel="nofollow noopener" target="_blank">#degrowth</a> <a href="https://aus.social/tags/doughnuteconomics" class="mention hashtag" rel="nofollow noopener" target="_blank">#doughnuteconomics</a> <a href="https://aus.social/tags/twittermigration" class="mention hashtag" rel="nofollow noopener" target="_blank">#twittermigration</a> <a href="https://aus.social/tags/health" class="mention hashtag" rel="nofollow noopener" target="_blank">#health</a> <a href="https://aus.social/tags/mitochondria" class="mention hashtag" rel="nofollow noopener" target="_blank">#mitochondria</a> <a href="https://aus.social/tags/databody" class="mention hashtag" rel="nofollow noopener" target="_blank">#databody</a> <a href="https://aus.social/tags/Novavax" class="mention hashtag" rel="nofollow noopener" target="_blank">#Novavax</a> <a href="https://aus.social/tags/DavidSchnarch" class="mention hashtag" rel="nofollow noopener" target="_blank">#DavidSchnarch</a> <a href="https://aus.social/tags/psychology" class="mention hashtag" rel="nofollow noopener" target="_blank">#psychology</a> ... and I might add more, now we can edit 😀

Recent searches

Search options

Administered by:

Server stats:

#identitymanagement