valorin.bsky.social
Friendly Hacker, Speaker, and PHP & Laravel Security Specialist.🕵️
I write securinglaravel.com and hack stuff on stage for fun. 😈
I'm found elsewhere too: https://pinkary.com/@valorin 🪄
819 posts
2,288 followers
494 following
Regular Contributor
Active Commenter
comment in response to
post
Haha, yeah, there is always that moment of "WTF?!" before the clues point to the really simple solution.
comment in response to
post
Oh that's an interesting thought. 🤔
comment in response to
post
Yeah I realised it was a joke. Sorry for ruining it, I guess I'm still mourning Wheel of Time. 😞
comment in response to
post
Your solution at least will ensure we get closure, so I'm all for it - as long as the team that gets to complete it is allowed to maintain the vibe.
I shudder to think how many current governments would "finish" shows like Wheel of Time... it would destroy the soul of the show.
comment in response to
post
It should be given back to the original creator (or their estate) along with all the production assets, so they can find another studio to finish it.
comment in response to
post
Agreed, that would have been so fun. But keep the big final trick a secret, and then put out interviews saying it's all real but not how it's done - we'd all be debating how they did it for years.
comment in response to
post
Given when that came out, almost everything had to be practical... I miss those days of practical effects and tricks. 😔
comment in response to
post
I really wish they went the other way, got a bunch of actual magicians involved, and performed proper tricks live for the cameras.
Would be so much fun to speculate how they did each trick
comment in response to
post
To add to this, if we can make it happen, I would love to do a public workshop in Copenhagen the day before Laravel Live. 🤔
I would need a local to organise a venue, help with advertising, etc, though, so if anyone is keen to help, please reach out! 🙏
comment in response to
post
So you might have to either go back to expecting users to remember lengthy secure random passwords - which you generate yourself so they can't use terrible passwords - OR require physical presence biometrics at your physical location.
You need to find the appropriate level of risk vs. usability.
comment in response to
post
If you're worried about user devices not being secure enough, then your users need standalone hardware tokens like YubiKeys. But even then, they can be lost or stolen.
If you don't trust the user to have any secure device to aid authentication, you're entering a very specialised realm of threats...
comment in response to
post
Yeah, as @lostdomain.org said, the passcode is only on your device, much like your fingerprint. Your phone uses your fingerprint or passcode to unlock the Passkey and allow it to be used. This is by design, tied to the device.
If you need to, set a stronger pin on your device.
comment in response to
post
To clarify, I'm thinking in the week of Laracon. Probably the Wednesday morning. That would make the most sense in terms of folks travelling to Brisbane.
comment in response to
post
He's always churning out great content in a really important niche and has a loyal following and engaged audience, so this is bound to be a no-brainer opportunity for lots of businesses!
Check his sponsors page out for inspo:
securinglaravel.com/sponsor/
Don't overthink it; just do it!
comment in response to
post
Paid pentest. 🏆
comment in response to
post
comment in response to
post
comment in response to
post
As someone who doesn't live where they are, I can confidently say they are cute and adorable and innocent of all accusations. 🐿️
comment in response to
post
Reschedule it? 😝
comment in response to
post
Awww, that's really nice of you to say. Thank you! 🥰
comment in response to
post
Coming down to @laracon.au too?