Bradford Mint
-
Posts
297 -
Joined
-
Last visited
Content Type
Forums
Blogs
Knowledge Base
Posts posted by Bradford Mint
-
-
4 hours ago, Drayke Newall said:
Where did anyone imply that 2FA is only a code? No one has said that. The difference is, the most common 2FA method is a code via email or sms.
There is a reason why that is the case as well. No software or web company is going to spend money with biometric 2FA unless it is physically built into a device and doing so would have worse take up than the code 2FA method.
My post said that's it's a mistake made by many. Please read a little harder. Just about everyone was fixated on codes by SMS, email or token.
As to biometrics, I'm really not going to get into it for good reason or the other methods available. I'll just keep snacking on the popcorn and watch with amusement
-
10 hours ago, Drayke Newall said:
That is my point in the whole thing. I have nothing against the 2FA method in that it provides security on top of passwords, just in its inconvenience and that without it being used on every account it becomes more and more vulnerable.
I've wanted to stay out of this since the last similar thread but one element that is missing for me and which seems to be mistaken by many is that 2FA is NOT a code that is sent to a phone or displayed on a token!
Some people's experience may be only that, others somewhat more. 2FA is a security principle of which the second factor could be a OTP code but does not have to be. Pedantic yes but it's an important point as far as I'm concerned.
Windows Hello for example can leverage certificates with biometrics. Difficult to use? Not unless sitting in front of the PC is considered difficult (and that's just one example of unobtrusive second factor).
Also, it seems that a large number of users seen reluctant to protect the viewer and if all they want to do is login and chat then I can understand their mindset but I've only seen Gabriele draw attention to the inventory as an important asset. That was certainly mine! Money I could have replaced but loss of intellectual property in scripts, animations, objects etc. that were of my creation would have ended my business operation.
Account takeover could also lead to related issues around fraud, either financial that affects the nonchalant player directly or others with whom that person would normally interact. Back to my example with assets. I would share content, edit rights and so on.
LL remain ridiculously behind the times by not offering methods available. Whether people want to use them would no doubt remain a personal choice and in that I have no issue with people who do not wish to apply better controls, just as long as they quit ranting about telling others that SL should not have better authentication security beyond avatar name and password!
-
1
-
2
-
-
I haven't actually seen any good responses here yet. This is clearly important and warrants you contacting your government.
They have resources, they can find people, they can launch helicopter attacks to sort this out.
Failing that, send an email to Liam Neeson, he has skills and knows how to find people.
-
3
-
6
-
1
-
-
4 hours ago, Dano Seale said:
Yes mate, that's factually correct, well done. However, while they now have to understand that there's English, Scottish, Irish and Welsh accents, you're going to have to learn all 50 of theirs! No such thing as an "American accent"...right?
Actually no because while the constituent countries that make up Britain (of course Ireland is not one of them), each of them has its own language, not just accent.
Thus to suggest that there's a British accent while describing that as one recognised as quintessentially well spoken English, is not only somewhat disrespectful of those inhabitants of those countries but also demonstrating a lack of either education or awareness but that's another subject.
But it's ok, I can just refer to this American accents of the Canadian Mounties or the American accents of the Mexicans or is it the Mexican accent of the Americans?
-
1
-
-
24 minutes ago, Dano Seale said:
At a guess I'd say you're averagely intelligent enough to know EXACTLY which accent we're going on about mate.
So you mean a specific ENGLISH accent then? Not a British accent of which there's really no such thing.
-
Precisely what does a British accent sound like?
Do you mean Dai, the Welsh villain?
Paddy the (Northern) Irish villain?
Or Jock the Scottish villain?
Or do you mean a stereotypically movie English accent?
Clue: British accent is somewhat meaningless.
-
On 4/7/2020 at 1:10 AM, Jordan Whitt said:
Cyclists who now think they own the roads cos not many people are driving at the moment are peeving me too!
Yes but... cyclists do own the roads as they have an implicit right to use them. Motorists have to be licensed to be permitted!
-
9 minutes ago, Lindal Kidd said:
Quite so! But using a company VPN is much more convenient.
and retaining potentially sensitive information within the corporate domain, much less likely to take a spanking from GDPR (depending on the nature of the data in question). The last thing that organisations need is data exfiltration via non approved methods.
-
I don't believe they have anything for corporates. Maybe people who work collaboratively in a small organisation who don't mind playing "dress up" first and have no need to share anything such as presentation content. Beyond that I struggle to find any fit.
-
1
-
1
-
-
8 minutes ago, Fauve Aeon said:
And since when has that ever stopped anyone before?😉 Paying remote part time marketing personnel to spin new marketing campaigns is probably quite a bit cheaper than paying tech developers to develop new platforms and features, so it makes economic sense to maximize and leverage the current technology in as many new ways as they can.
Yes, they can try and I predict that if that's the plan, they will fail to gain traction, that's all. It's just too niche with such vastly different requirements to execute, delivering next to none of the standard requirements that the market has already demonstrated are what the customer base need.
Where it probably would work perfectly would be to create a virtual environment for a virtual meeting room for inconclusive talks between vacuous UK government and the EU. Nothing productive would happen and no tools will have been harmed in the process.
-
1 minute ago, MichaMoz said:
This is more likely the Lab's way or reaching out at a time of crisis to assist educators by offering a platform while everyone is "social distancing". While some may stay after the current crisis is abated it's unlikely they will remain once things normalize.
Possibly but they're missing the mark. It's not about the cost to education or anyone else, it's about the requirements of the platform upon which to run the client and the user interface to achieve three main presentation tasks, those being slide presentation, whiteboard and screen share. Without those, it's a dead duck for at least 99.67% of the intended customer base, more so when up against incumbents where the only requirement is a browser, or mobile app which can do all of the above tasks with ease.
Does a lecturer comprise a virtual avatar professor without any decent established common method of presentation tool? Nah, i'll go with a video feed thanks
-
38 minutes ago, Fauve Aeon said:
...nothing stopping SL from possibly pursuing something similar, especially if they pursue any kind of partially rebranded enterprise solution and that would give them one reason to partition content more on the grid if that’s one of the directions they choose to go
Other than they'd just become another "me too" in a market of existing, established incumbents.
-
1 minute ago, Scylla Rhiadra said:
Mark Kingdon, and "Second Life Enterprise." Rosedale's High Fidelity also targeted the same market -- with much the same success.
Thank you! That's the one, I forgot which "King" Linden it was at the time, I left SL quite a long time ago now. It really needs to be accessible in a web browser, very limited in scope and frankly, by the time you've done all that and made it conference ready, it's just NOT SL at all.
Without any method to share content, I mean REALLY share content, even something as basic for business as a powerpoint or a screen share, then it's a non starter and please nobody suggest media on a prim, i'm talking about native integrated support. Remote meetings typically need so much more than just to look at a pretend person when I can actually see the real person. Far more fun is to turn on FaceRig and become an animated rigged avatar as a virtual camera feed to Webex but even so, it's a distraction and only suits internal meetings for holiday times. Nobody really wants to see me as a female bartender holding jugs of beer as their line manager
-
2
-
1
-
-
58 minutes ago, Evangeline Arcadia said:
I would agree that perhaps a different grid at least would be better, or at least some more 'contained' environment so that the 'wild' and 'crazy' of SL doesn't perhaps tarnish any first impression or impinge on a 'business' environment. So no teleporting to hubs!
They tried selling "SL behind the firewall", I forget what that was called but that was when the CEO at the time (forgotten his name) thought that the money was in business, completely ignored the consumer playing base and tried to market SL to corporates. That didn't end well.
-
1
-
-
SL has always been a very poor platform for remote working/team working etc. other than for a few niche areas where like minded individuals have made it work.
For most people, remote working comprises either VPN or VDI such that they can connect to and access corporate resources and then perform all their usual functions, such as Office 365 for documents, or utilise other web based SaaS applications.
For video conferencing, multiple choices available from Skype, MS Teams, Webex, Zoom etc. all of which need nothing more than a web browser at minimum. I manage my team like this who are spread throughout EMEA, it's run of the mill for us each and every day, not just in times such as this.
SL client, being a full fat client, requires specific hardware, IT involvement to install or approve and all to what end? So that we can sit around a pretend virtual conference room in default avatars, because I wouldn't want my team spending time going shopping just to pimp their avatar!
If people want a pretend office workspace, there are other much more flexible, remote working specific, pretend office environments, Second Life is definitely not it.
-
1
-
1
-
1
-
-
4 minutes ago, Prokofy Neva said:
The better question to ask is: why do you think I wouldn't get to know? I'm a user who runs a business on this platform. Hello? Cloud provision is vital to the functioning of any network but particularly a virtual world. There is an assumption that things get better if a company "moves to the cloud"; they often get worse.
I haven't said you wouldn't get to know (you or anyone else). What I said was that your service is with LL, not the cloud provider. LL cannot provide an SLA greater than that of their provider (well they could but would be dumb to try) and their SLA is absolutely zilch so they're hot to trot!
Cloud provision isn't vital to the functioning of any network, only to those who choose to consume the compute, service and storage resources that may be offered over any network. This seems moot at this time however. I'm not sure that there's an assumption that things get better with moving to cloud. What does happen is that a local datacentre can be downsized or removed, no need for specialist staff to host "whatever service", the replacement services are consumed as a service and contractually against an SLA for a specific contract term and crucially for some, moves the cost model from Capex to Opex which has accounting implications as well as usually definable benefits in terms of service provision and upgrade. Those are some of the key points of outsourcing whether it's people or service, i.e. cloud. Cloud in this context is just synonymous with service. Nothing magical about cloud to see here.
4 minutes ago, Prokofy Neva said:The Lindens have talked about "moving to the cloud" and I assumed it was done already; then I found out it wasn't. So I'd like an update on that. Perhaps Oz Linden could do it. Fortunately the Lindens are more amenable to public questions and being accountable than their fan base.
Phone them up and ask, i'm sure they'll answer. However, as i've already pointed out, how they deliver the service isn't really that relevant to the end user, random player or business owner. The service as provided by LL remains the same with the same SLA and TOS. *shrugs*
-
31 minutes ago, Prokofy Neva said:
Did SL move to the cloud? Will it? Is this working or not? What can the user expect? Anyone who wants to invest more in SL would need to know those questions.
Just to pick up on this piece, why do you think you need to know?
Your service is provided by LL, the cloud provider (if relevant) provides service to LL. Do you know what material the pipes are made of that transport your domestic water? Which route they take? What redundancy they have in place? What their operational plans are for a targeted terrorist attack? My guess is no. You pay your water company against an SLA and they in turn deliver you water, in accordance with that SLA (or not).
You're over thinking it and yes, you can complain, you can ask whatever questions but that doesn't mean they'll listen or respond.
-
2
-
-
1 minute ago, Luna Bliss said:
So how many people does it have to disturb, and to what degree, before anybody has the right to complain? How do you determine when the 'complaint level' has been reached?
That's a question that should be posed to LL. They set the TOS, not me. BTW, people always have the right to complain, just that it might confer no rights with regard to remediation, per whatever TOS they've agreed and signed up to.
-
1
-
-
1 minute ago, Luna Bliss said:
"Because the rules say so" is not a good argument in this case. Despite what the TOS dictates, if anything bothers enough residents in SL I'm fairly sure LL would address it in some way. Not that the few outages which occur in recent times would provoke enough people to protest and effect a change -- I'm only saying your premise of "because the rules say so" is not effective in this discussion.
Key point highlighted there which is the subject in question which in this case makes a good argument of "because the rules say so"
-
1
-
-
13 minutes ago, Prokofy Neva said:
It's not about drama; it's about service. You don't take this attitude toward your RL electric company or phone company so there's no need to take it with SL, which is no different. It's a service. Many pay for it -- which by the way, enables the people not paying to enjoy it.
There is a published SLA for those services. It's actually pretty rubbish too. My mobile phone provider was down for 2 days a week or so ago in some parts. It didn't affect me at all and for those who were affected, the amount was £20...if you claimed...and if it was supported with evidence.
I'm sure you understand the concept of a Service Level Agreement? I'm not sure that you do, point being (for the third time now) is that SL does not offer one and if you got a stipend back at the beginning of SL, that sounds like just a goodwill gesture to save their new players from leaving. Those sorts of payment stop when the environment is fully established, just like they have stopped.
Find the part in the TOS that defines the SLA that says that service users are entitled to full reports of service outage, it's probably right next to the part that says how much compensation that LL will pay to every registered account, active on a daily basis or not.
Further, the fact that many pay? Again, i'll refer you to the part of the TOS 1.5. No sh*ts given by LL. I don't consider you a partisan rebel, just someone who appears unclear as to what the TOS actually offers as compensation. It's clear to me, not worth fussing over.
-
16 minutes ago, Jackson Redstar said:
sometimes SL being down is no biggie, but remember people also work and or make plans in SL, often far in advance. Take a wedding, for example. Not to funny if SL is down for a wedding day you have planned on for months
Indeed but the crux of it is that the TOS that EVERYONE agrees to, yes even those who fail to read it, is that the service is provided as is with no guarantee.
1.5 The Service is subject to scheduled and unscheduled service interruptions and loss of server data, which you do not own and for which you will not hold us liable.
Linden Lab may on occasion need to interrupt the Service with or without prior notice. You agree that Linden Lab will not be liable for any interruption of the Service (whether intentional or not), and you understand that except as may otherwise be specifically provided in Linden Lab's billing policies, posted on applicable areas of the Service and/or Website(s), you will not be entitled to any refunds of fees or other compensation for interruption of service.
There is no SLA, there is no compensation so like it or not so there's no point even wasting time complaining about it or demanding full answers is just drama for the sake of it and someone who has been here as long as the OP should know this.
-
1
-
-
They don't need to say which vendor.
Read again https://www.lindenlab.com/tos
Specifically section 1.5 aka "Sh*t Happens Deal With It"
-
What's the big issue? There was an outage, move on.
Sometimes the reason is technically tiny but the impact is massive, for example the fairly recent global outage of the entire O2 mobile phone service. Due to an expired certificate!
SL isn't part of a nations critical national infrastructure.
Something happened, they did stuff, resolved it. *Shrugs*
-
13
-
2
-
-
35 minutes ago, Matty Luminos said:
I work in a financial company that deals with GDPR and data requests every day. GDPR only covers PERSONAL DATA. The definition of personal data is "Data that can be used to identify a living individual."
As far as it relates to Linden Lab, no, you will not get your entire chatlog history, support requests, JIRAs etc, because this is data that does not identify a living individual.
Not quite:-
https://ec.europa.eu/info/law/law-topic/data-protection/reform/what-personal-data_en
"Personal data is any information that relates to an identified or identifiable living individual. Different pieces of information, which collected together can lead to the identification of a particular person, also constitute personal data."
"information that relates to" is important here. When I requested data from a previous employer which also happened to be a large bank, I was sent all my previous bank statements which under your definition (which isn't the precise one), transactions would not be included.
It's questionable therefore as to whether chat logs for example, could constitute personal data as it could be argued that they are transactional and thus like a financial transaction "£20 paid to shop x" which is only related to me but does not by itself identify me.
Anyway, Wulfie did the legwork and we have a response.
Facebook
Instagram
Twitter
YouTube
Flickr
Two Factor Authenication (2FA)
in General Discussion Forum
Posted
Or I could just ignore your request... It did, you interpreted badly