hhmx.de

Erik van Straten

Erik van Straten
@ErikvanStraten@infosec.exchange

· Föderation EN Mo 17.03.2025 22:42:20

@EndlessMason : thanks for responding!

You wrote:

"
Every site is a sea of spammy notification/cart abandonment/special offer/watch list/privacy policy update/m&a mail... And thats before they get pwned or sell your details.
"

Yes, and before that you wrote:
"
Also, who's not doing single use email addresses?
"

Most people. The amount of worries I have for people like you and me are negligible compared to the people who are *not* like you and me.

We should not need to fix people, we need to fix the internet.

@0xF21D @malanalysis

0x   1   0x

EndlessMason

EndlessMason
@EndlessMason@hachyderm.io

Föderation EN Mo 17.03.2025 23:00:15

@ErikvanStraten @0xF21D @malanalysis

This is not an exclusive-or choice.

In fact, if there were a hypothetical technology that allowed the user to use a certificate for authentication, and manage it in a key ring and sync it safely between browsers, you'd still need your human user to opt in to use it, to demand sites provide it and to be knowledgeable enough to keep the cert secret.

They'd also need to know to not fax their cert to bad guys.

0x   0   0x