In the wake of the migrant crisis at the Finnish-Russian border, neighbouring Estonia said it will not let migrants sent by Russia onto its soil but will stop them at the border, Estonian Interior Minister Lauri Läänemets said on Thursday.
Let’s say, I create a bank with the caveat that all of my banking phone apps and webapps are FOSS (or if they depend on non-free components — banks probably do to communicate with each other —, then just OSS). Am I going to be behind the competition by doing this?...
I don’t know much about Belgian banks, but the first one I found is Ing, and here is their documentation: developer.ing.com/openbanking/home. I’m sure searching for " bankname PSD2" will give you results for other banks.
Surely you are not suggesting that Cloudflare has access to end user credentials? Why would you say thay? Do uou have any hint of proof that that is the case? It would be a massive no-no, and heads would roll. If you hate electronic banking, here is your chance to take them down.
I’m well aware that Cloudflare holds the TLS keys. I’m also well aware that that does not equal having access to credentials.
Banks certainly can not outsource willy nilly. Or well, I suppose they may in some jurisdictions, but the context here is Europe, where the banks actually are regulated.
Without TLS termination Cloudflare is still useful for e.g. DDoS protection, and serving content that do not contain client information.
Caching client data globally using Cloudflare would be pretty pointless and help very little and probably even be harmful to performance, so them having the TLS key for it would absolutely not be worth it.
Well, it seems people are prepared to pay quite a bit for cloudflare DDoS protection. Maybe you are right, and they are all wrong. But it does not really matter, because they cmearly have convinced people that it is worth paying for it, even if you disagree.
AFAICT, CF’s role is mostly useless if the SSL keys are held by the site owner.
It seems like a lot of your points hinges on this being true, but it simply isn’t. There is a massive benefit to preventing DDoS attacks, and that does not require keys. There is no indication that banks are handing over client ctedentials to CF.
any website can trivially configure their own firewall in the same way without CF.
How many websites can handle the amount of traffic that CF can handle? It’s not just about configuring your firewall, it’s about having the bandwidth. Otherwise it’s not much of a DDoS protection.
I see CF keys.
As I don’t have an account there I can’t see which requests containing credentials use which cert.
And also, just because the cert is verified by cloudflare does not mean they have the private key.
I got an old Windows 7 laptop that was going to be thrown out and decided to put Linux on it (see previous thread here). Most people suggested I go with the latest stable version of Debian, so that’s what I installed. I’ve mostly used Windows, but I do have some experience with Ubuntu....
Number 2 is by design. Running as root is extremely dangerous, and passwordless sudo is not much better. You can, of course, allow sudo without a password by editing the /etc/sudoers file, but be concious of the security implications (any program you run would essentially have full access to everything, without you ever knowing).
I was going through this wonderful thread lemmy.ml/post/4540882 and found many of you talking about discord as it’s a crime against knowledge for not allowing indexing on it. I think we are talking about indexing by search engines like DDG and Google here and I know that discord questions don’t show up in search results and...
Discord has a weird and confusing definition of “server”. The equivalent in Matrix would be “spaces” but they are not very commonly used (and I’m not sure there is a public list). Instead Matrix is most often used with individual rooms.
Due to the distributed nature of Matrix it is actually impossible to create a complete list of public rooms. However, one probably fairly complete list can be found at view.matrix.org. Most clients have room search built-in, so you would rarely need that list
But it does restrict making use of the program in specific fields of endeavor. That’s the entire point of the license. I would e.g. not be able to use it in a business that sells hate speech literature.
The biggest problem I see is that you can suddenly become non-compliant just because Hashicorp decides to release a new service (i.e.they start competing with you, rather than the other way). It can be a huge risk for companies.
Probably works well if you are an established company, but why would e.g. a startup pick licensing headaches over the competition? I imagine bigger companies would also rather just move to e.g. CDK or ARM if they don’t need multiple providers (at least our company started discussing this today).
What kind of “custom licensing” do you anyway think a 5-person startup would get?
Is there anything akin to a federated forum login?
cross-posted from: lemmy.giftedmc.com/post/78147...
Estonia to stop Russian-created migration flux at border, says minister (www.euractiv.com)
In the wake of the migrant crisis at the Finnish-Russian border, neighbouring Estonia said it will not let migrants sent by Russia onto its soil but will stop them at the border, Estonian Interior Minister Lauri Läänemets said on Thursday.
What's stopping banks from creating FOSS (or atleast open-source) banking solutions (apps)?
Let’s say, I create a bank with the caveat that all of my banking phone apps and webapps are FOSS (or if they depend on non-free components — banks probably do to communicate with each other —, then just OSS). Am I going to be behind the competition by doing this?...
Newbie with questions about Debian
I got an old Windows 7 laptop that was going to be thrown out and decided to put Linux on it (see previous thread here). Most people suggested I go with the latest stable version of Debian, so that’s what I installed. I’ve mostly used Windows, but I do have some experience with Ubuntu....
Is there no way to index discord chats? Is Matrix a viable discord alternative?
I was going through this wonderful thread lemmy.ml/post/4540882 and found many of you talking about discord as it’s a crime against knowledge for not allowing indexing on it. I think we are talking about indexing by search engines like DDG and Google here and I know that discord questions don’t show up in search results and...
deleted_by_author
HashiCorp changes license from Mozilla Public License 2.0 to Business Source License 1.1 on their products (www.hashicorp.com)
The best wireless headphones for 2023 | Engadget (www.engadget.com)
Here's a list of the best wireless headphones you can buy right now, as reviewed by Engadget editors..