Comments URL: https://news.ycombinator.com/item?id=48259029

Points: 2

# Comments: 1

This is oftentimes political. The CISO wants additional budget for secure coding training and to hire more security engineers, let the pentesting firm demonstrate a massive compromise and watch the dollars roll in.

A lot of time, especially in smaller companies, it's the opposite. No one is responsible for security and customers demand some kind of audit. "Don't touch anything we don't authorize and don't do anything that might impact our systems without explicit permissions."

Wiz is a very prominent cloud security company who probably has incredibly lucrative contracts with AWS already, and their specialty, as I understand it, is identifying full "kill chains" in cloud environments. From access issues all the way to compromise of sensitive assets.

If you consider a threat model where the threat is printing inappropriate stickers, who are the threat actors? Children who are attempting to circumvent the controls and print inappropriate stickers? If they already know about topics that they shouldn't be printing and are trying to get it to print, I think they probably don't truly _Need_ the guardrails at that point.

In the same way many small businesses don't (most likely can't even afford to) opt to put security controls in place that are only relevant to blocking nation state attackers, this device really only needs enough controls in place to prevent a child from accidentally getting an inappropriate output.

It's just a toy for kids to print stickers with, and as soon as the user is old enough to know or want to see more adult content they can just go get it on a computer.

That is literally the system that exists today, except instead of in the open (e.g. salary) it's through stocks with insider information and who knows how else.

The point isn't to optimize for people who are most incentivized through money, the point is to make the position more accessible for anyone who actually wants to do the "service" part, and to minimize the reasons that it's hard. As the previous commenter pointed out, right now independently wealthy people are some of the only ones who are actually capable of running, and someone who isn't independently wealthy who wins is even more susceptible to bribes because they may be in a tenuous financial position.

I would agree with you that we want individuals who's goal is to do "service" for their society, but our current system obviously isn't working and there are a lot of solid reasons why something like this _could_ improve the situation, what alternatives would you recommend?

https://www.cvs.com/immunizations/flu?icid=immunizations-lp-...

Under the "How much does a flu shot cost?" section it says $75 for a standard dose.

IMO that's a far worse UX than update and shutdown turning the computer back on at the end.

A thermostat and controls are a necessary requirement for HVAC systems and defaulting anything to "run" if your control plane doesn't exist anymore is definitely not the safe option.

The other issue is that in almost all situations (like this one) what you think is a safe and sane default won't align with what other people think.

There should be defaults and they should be clearly defined, but I don't think it's always obvious to determine what they are.

While it is controllable via the cloud, even without wifi it continues to function.

Compromising or stealing a device is a significant escalation from guessing passwords.

I posted another comment explaining why 1Password Vault with both a password and a OTP code is still secure, but in short it does not defeat the purpose. Your vault's are protected and in the situation where someone gets access to your vault it's most likely to be full access to your computer at which point they have other viable methods to get access to a specific service you use.

Let's do a quick threat model on putting both passwords and MFA tokens in a 1password vault.

1Password employees a recovery key + password login by default, and logging into a vault requires you to either have a device with the encrypted vault on it and your password, or have knowledge of your password and knowledge of your recovery key (normally in a file which makes it something you have) essentially traditional 2fa needed to log into a new device.

If someone steals your phone with 1password installed - they need your 1password to be able to access your credentials on the physical device. At that point they already have both your factors - your phone (have) and your password (know) - still protected by 2fa.

If someone manages to fully root your computer, they could wait until you unlock your vault and then extract your credentials. However, if you use traditional 2fa on a separate device - then they can just wait until you log into the target app, and then ride your session and get the same level of access to the target. While there may be a small difference in level of effort or how long it takes, the same access level is possible, and the requirements are that they have very privileged access to your operating system. Someone rooting the device that you login to services is grants them "single factor" access to your services when you access them.

There is some subtle differences between these, but except for situations where you have very high privileged requirements, at which point you should be using yubikeys or standalone MFA devices, using 1Password with OTP and password is very comparable to using a separate device for MFA.

I'm a previous red teamer and currently a blue teamer.

It's also definitely possible to haul all those things with almost any truck. Hell, you could even buy a rack for a maverick that makes full 8ft by 4ft sheets of drywall/plywood super easy to carry around, but being able to really easily load up stuff and not have to do some complicated strapping/securing of the payload is a big win with a bigger bed. I personally haul motorcycles a lot, and being able to have two motorcycles in the bed with tailgate up is a huge plus for me.

edit: misunderstood your first comment. What year Ranger are you talking about? The difference between an 80's/90's small truck and an early 2000s can be very considerable.

There's a whole different conversation and argument about the general size of vehicles in the US that is essentially circular and leads to bigger and bigger vehicles in the name of "safety".

That being said, I really wish we had a small ICE truck in the USA, or an equivalent to the s-10/ranger. Even the ford maverick is exceptionally tall and it doesn't come with a bed that is big enough to conveniently move building materials. The maverick bed is only 54" or 4.5ft and older model rangers and S10s can be had with up to a 6ft bed.

https://www.motor1.com/news/698055/toyota-13000-dollar-hilux...

I think the industry is realizing that less is more when it comes to passwords and we're starting to see far more adoption of password managers and a bigger focus on getting SAML/SSO login options for SaaS tools, even if they are often gated behind paywalls or "enterprise" plan options.

Now that I'm in a more "defensive" position my primary focus on the credential front has been pushing password manager adoption across the org and looking for good opportunities to showcase that password managers are both significantly faster and easier to use if people are willing to change their workflow.