| 1 person marked this as a favorite. |
I'd be more worried about Nora Virus then having to be fished from overboard.Reading everything that happens to people on cruises, and how the cruise ship industry does its utmost to hide it all, up to and including flagging all their ships using countries with the laxest regulations and weakest liability protections, yeah, nope. Not going there.
GothBard and Impus Major desperately want to do one of the Sabaton cruises one of these years. My reaction is, "It may be Sabaton, but it's still a cruise. Not interested."
Now I’m just curious as to what sort of boat one uses for a Sabaton cruise. The floating monstrosities are, I suppose, suitably brutalist, but the general idea doesn’t sound particularly metal to me (if we’re thinking of the same Sabaton), apart from the horrors that seem to ensue so reliably from cramming so many people in such tight quarters.
I would guess a piratical flotilla (“Is this the face that launched a thousand ships?” &c.) might work, but that leads to other logistical issues, and still probably involves far too much more – how does it go again? – “rum, sodomy, and the lash” than is Qunnessaa’s thing. Whatever floats one’s boat, of course.
And now I’ll have to think of a suitable tricolon for the sort of cruise or fleet that I would be interested in. :)
I gather there are some folks running working cruises now with fussy, miniature-scale cargo deliveries by sail, which did strike me as potentially fun, and only involves a handful of people to possibly catch something terrible from.
| 2 people marked this as a favorite. |
When I was in africa one of the weirder side effects of the anti malarial drugs was really vivid dreams. If you have bad dreams (like a lot of people that need an anti malaria pill) that side effect was absolutely horrific. I can see why they had to switch to something else.
I tend to have rather sensible dreams, or to have some control over my actions, and occasionally full on lucid dreaming. So while being hungry having a drug induced unbelievably realistic dream of eating at dennys was usually the best part of my day.
The weirdest part is, any dreams i have now, decades later, about being over there are really realistic. I had a dream I'd been arrested and the cops let us go to a museum (it made sense in context) but it took me a good 10 minutes after waking up and a google search to confirm there were no triceratops skeletons in Mauritania to be sure it was a dream and not a memory.
It was a little disorienting but the museum was interesting..
| 1 person marked this as a favorite. |
Now I’m just curious as to what sort of boat one uses for a Sabaton cruise.
A world war 2 personnel carrier powered by 6 v8 rocket engines in a rotating cylinder?
Fantasy Monster: Giant Stone Head
A big stone head to adorn a temple or block a corridor!
I'd be more worried about Nora Virus then having to be fished from overboard.Reading everything that happens to people on cruises, and how the cruise ship industry does its utmost to hide it all, up to and including flagging all their ships using countries with the laxest regulations and weakest liability protections, yeah, nope. Not going there.
GothBard and Impus Major desperately want to do one of the Sabaton cruises one of these years. My reaction is, "It may be Sabaton, but it's still a cruise. Not interested."
Now I’m just curious as to what sort of boat one uses for a Sabaton cruise. The floating monstrosities are, I suppose, suitably brutalist, but the general idea doesn’t sound particularly metal to me (if we’re thinking of the same Sabaton), apart from the horrors that seem to ensue so reliably from cramming so many people in such tight quarters.
I would guess a piratical flotilla (“Is this the face that launched a thousand ships?” &c.) might work, but that leads to other logistical issues, and still probably involves far too much more – how does it go again? – “rum, sodomy, and the lash” than is Qunnessaa’s thing. Whatever floats one’s boat, of course.
And now I’ll have to think of a suitable tricolon for the sort of cruise or fleet that I would be interested in. :)
I gather there are some folks running working cruises now with fussy, miniature-scale cargo deliveries by sail, which did strike me as potentially fun, and only involves a handful of people to possibly catch something terrible from.
It's more of an "80s party boat" theme. Which is in character; if you've ever seen Sabaton in concert you know they dress metal and play metal about war history, but Joaquim gets the giggles something awful, and they are a silly, fun-loving lot.
I'm not sure the car dealership near me actually wants to sell me a car for some reason.
I emailed a few times them using the address on the card they gave me when I did a test drive asking for an out the door price and got no response. Yesterday I decided to try calling to get an out the door price. someone other than the person that gave me the card answers and tells me to hold on while they go to their desk so they can look up information. They then hang up and I wait 20 or so minutes for them to maybe call me back. I try calling again, It rings for a few minutes and someone else answers asking what I'm calling about. They say they'll transfer me to someone that can talk sales with me. They transfer me and i listen to it ring for 10 minutes until someone picks up the phone and immediately puts it back on the cradle.
A few hours pass and I decided to actually go to their website and click the confirm availability button to see if that will make it so they actually respond to emails. 5 seconds after filling out the form I get a phone call from them in response to me filling out the form asking when I'd like to come down and test drive. I tell them I've already done a test drive and just want the out the door price emailed to me. the person on the line tells me they'll text me on monday with the information. I tell the person on the line explicitly not to send me anything via text and to send it via email with them confirming the email address. 5 minutes off the call i get a text with a video in it from them that doesn't work on my phone.
I don't know why they even need to wait until monday to get me an out the door price when they were open for several more hours yesterday and today. would they be unable to sell me a car if i showed up in person as well?
Have you physically confirmed the car is still actually on their lot?
I'm not sure the car dealership near me actually wants to sell me a car for some reason.
I emailed a few times them using the address on the card they gave me when I did a test drive asking for an out the door price and got no response. Yesterday I decided to try calling to get an out the door price. someone other than the person that gave me the card answers and tells me to hold on while they go to their desk so they can look up information. They then hang up and I wait 20 or so minutes for them to maybe call me back. I try calling again, It rings for a few minutes and someone else answers asking what I'm calling about. They say they'll transfer me to someone that can talk sales with me. They transfer me and i listen to it ring for 10 minutes until someone picks up the phone and immediately puts it back on the cradle.
A few hours pass and I decided to actually go to their website and click the confirm availability button to see if that will make it so they actually respond to emails. 5 seconds after filling out the form I get a phone call from them in response to me filling out the form asking when I'd like to come down and test drive. I tell them I've already done a test drive and just want the out the door price emailed to me. the person on the line tells me they'll text me on monday with the information. I tell the person on the line explicitly not to send me anything via text and to send it via email with them confirming the email address. 5 minutes off the call i get a text with a video in it from them that doesn't work on my phone.
I don't know why they even need to wait until monday to get me an out the door price when they were open for several more hours yesterday and today. would they be unable to sell me a car if i showed up in person as well?
You're asking for the price in writing. I doubt they'll ever do that as it could be considered a legal commitment. See whether they'll verbally give you one. Most dealerships will balk at writing down a number until you're physically at a salesperson's desk starting the "final" sales process.
And yes, Shiro had multiple experiences of getting a verbal price over the phone or even at the dealership, starting the paperwork, having them present a different price in the paperwork, and having him walk out.
Unfortunately, you have to work under the assumption that:
(1) Dealerships are scum, and
(2) because of (1), they're terrified of putting anything in writing.
I think that's likely your issue.
| 1 person marked this as a favorite. |
It's interesting to me how Anime can be just as toxic as sports or politics, but a far less controversial topic of discussion. (You can argue anime at the Thanksgiving table without getting thrown out of the house, for example.)
Last night we started Solo Leveling. It's a perfectly solid, isekai-adjacent anime that's been done before, and done better. (Sword Art Online before they decided to turn the strong female protagonist into a helpless damsel, or the first arc of Re:Zero).
But we were enjoying it as a solid entry in the "isekai loser get gud" trope.
Then Impus Minor came in and declared how much he hated it. Why? Because it beat out Frieren for Anime of the Year.
And yeah, I can see where he's coming from. Frieren is a fundamentally original story. Frieren's basic animation is simple, but they intentionally used far superior animation to bring home emotional points and the changing animation styles really resonate. From a critical or artistic viewpoint Frieren beats Solo Leveling at everything. I'd argue that even its theme song is catchier, and the closing credits give me the feels.
But it's just an award. I loved Frieren but I'm all caught up and we needed something else to watch. Solo Leveling is solidly-written, decently-animated, and a good action-packed anime for passing the time. I don't hate it for beating out Frieren; I blame whoever gave out the award for what I consider a blunder of action over story.
But soooooooooo many people will hate an anime/team/political party just because it beat out theirs, it was an interesting little vignette to see Impus Minor going off on how he hated Solo Leveling not because of its quality or entertainment value, but because it won an award it didn't deserve. He's smart enough he knew it wasn't Solo Leveling's fault, but he still viscerally misliked it as a result.
I love such little observations of the human condition.
The awards are just a popularity contest, I don't give them any thought.
That was pretty much exactly my thinking, but since they upset Impus Minor so much I did consider, "OK, which one was the 'better' anime?", and in my mind Frieren pretty much won across the board other than "full of action".
Frieren is practically the Seinfeld of anime: An anime about "nothing", where the journey is far more important than anything that happens along the way.
EDIT: On the other hand, they could go the way of the Oscars and award absolute dreck for being "artsy" (I'm looking at YOU, The English Patient, still one of the worst movies I've ever seen). So at least if it's a popularity contest, the anime that wins is likely to be worth watching.
| 1 person marked this as a favorite. |
It's interesting to me how Anime can be just as toxic as sports or politics, but a far less controversial topic of discussion. (You can argue anime at the Thanksgiving table without getting thrown out of the house, for example.)
Last night we started Solo Leveling. It's a perfectly solid, isekai-adjacent anime that's been done before, and done better. (Sword Art Online before they decided to turn the strong female protagonist into a helpless damsel, or the first arc of Re:Zero).
But we were enjoying it as a solid entry in the "isekai loser get gud" trope.
Then Impus Minor came in and declared how much he hated it. Why? Because it beat out Frieren for Anime of the Year.
And yeah, I can see where he's coming from. Frieren is a fundamentally original story. Frieren's basic animation is simple, but they intentionally used far superior animation to bring home emotional points and the changing animation styles really resonate. From a critical or artistic viewpoint Frieren beats Solo Leveling at everything. I'd argue that even its theme song is catchier, and the closing credits give me the feels.
But it's just an award. I loved Frieren but I'm all caught up and we needed something else to watch. Solo Leveling is solidly-written, decently-animated, and a good action-packed anime for passing the time. I don't hate it for beating out Frieren; I blame whoever gave out the award for what I consider a blunder of action over story.
But soooooooooo many people will hate an anime/team/political party just because it beat out theirs, it was an interesting little vignette to see Impus Minor going off on how he hated Solo Leveling not because of its quality or entertainment value, but because it won an award it didn't deserve. He's smart enough he knew it wasn't Solo Leveling's fault, but he still viscerally misliked it as a result.
I love such little observations of the human condition.
I dont know what you're talking about.
The awards are just a popularity contest, I don't give them any thought.
Its sad, but...yes. That is what they have become.
Speaking of interesting life observations, it's amazing as a 'Merikun understanding just how separated we are from the rest of the world. If you're 'Merikun, you're almost certainly using Facebook to keep in touch with your friends and family. Sitting on a call with international employees, or getting layoff goodbyes from them, everyone else uses WhatsApp. U.K., Australia, Romania, Mexico, India; all my colleagues from any other country in the world use WhatsApp.
Kind of like 'Merikun football vs. Rest of the World football.
| 2 people marked this as a favorite. |
In my opinion, comparing Frieren to Seinfeld is a sin. I never understood why anyone liked Seinfeld.
Seinfeld was a show about nothing with a bunch of obnoxious, unlikeable characters. Frieren is a show about nothing with a bunch of sweet, easy-to-like characters.
I wonder if Frieren will get as many sociology studies on it as Seinfeld has.
Isn't whatsapp used as the main message app outside the US because it had better privacy practices before facebook bought them?
Instaface seems more interested in encouraging AI-driven engagement with advertisers/'influencers' than acting as an actual social network. That may just be my Old Man Grumps, of course.
My understanding as a 'Merikun is that WhatsApp has a far richer feature set; it's a truly integrated platform you can use for financial transactions, communications, social media, and everything else you could want. The reaction I've heard from immigrants trying to switch to Facebook is, "Why can't it do xxx?"
WhatsApp is supposedly far less privacy-secure than Facebook, but it's wiser to see what people in the EU do because they have the best privacy laws, and European users overwhelmingly use WhatsApp.
I got more memory...
And I ended with slower memory.
Except, it seems the new memory needs 1.35V or so to run at 3200 Mhz. Apparently, the motherboard I have is a business board and is limited to 1.2V per memory slot, which makes the memory work in the safe 2133 MHz.
That older memory worked in 3200 MHZ on 1.2V...
My understanding as a 'Merikun is that WhatsApp has a far richer feature set; it's a truly integrated platform you can use for financial transactions, communications, social media, and everything else you could want. The reaction I've heard from immigrants trying to switch to Facebook is, "Why can't it do xxx?"
WhatsApp is supposedly far less privacy-secure than Facebook, but it's wiser to see what people in the EU do because they have the best privacy laws, and European users overwhelmingly use WhatsApp.
WhatsApp is kind a different beast. It's more of a messenger and group chat than anything. We ended crating a few group chats there (a game appointment chat for one group, and a few work chats) when I was suspended from Facebook because apparently clicking too fast is suspicious behavior...
Drejk opening the computer: *sigh* anxiety is annoying, stressing over a simple task like replacing memory...
ASUS designers: We have hidden memory slots between the CPU fan AND a big-ass HD pocket screwed to the frame in a way that makes it impossible to take off when doing things inside the computer, without unscrewing the pocket itself AND the whole front panel at the same time.
Oh, and we used a single-latch slots with the latches hidden between the top of the box and the HD pocket...
Drejk: F-ing seriously?
Some 20-30 minutes later...
Drejk: Ok, I managed to pull out the memory sticks and replace them with the new ones. Turning the computer on.
Computer: The power turns on. No signal to the monitor. Everything stays dark. No signal, but the fan is clearly working inside the box.
Drejk: A simple. Little. Task. That. Should. NOT. Feed. My. Anxiety. Dammit.
Credit where the credits is due: Google AI was actually helpful during the process:
- first it told me that there should be latches on the upper side of the slots when I couldn't see them and couldn't recognize them as actual latches by touch alone and described how should I pull the memory sticks from that kind of slot - it was wrong about few other details but so I would be if someone was describing the internal configuration of that box on the phone to me.
- then it correctly guessed that one or both memory sticks are likely not pushed down tightly enough and I should gently press on them to make sure they are connecting properly. Yup, that was enough to solve the not-starting-up problem.
- it gave me some tips about trying to change the memory voltage but the BIOS itself had no adequate options.
Trying to find the same information pre-AI era would take me far too long time that I would have to spend checking forum after forum of posts.
It costed slightly less than a third of my monthly income, instead of setting it aside and adding it to savings.
Next month I might go wild and get myself a graphics card for over a half of my monthly income... We'll see.
Next month I might go wild and get myself a graphics card for over a half of my monthly income... We'll see.
Careful; once you hit three months' salary I believe you're required to marry it...
Next month I might go wild and get myself a graphics card for over a half of my monthly income... We'll see.Careful; once you hit three months' salary I believe you're required to marry it...
No worries, such kind of cards won't fit inside my minitower anyway...
Not that I have looked at some of them.
Impus Major's Friend: Hey, are you going to see the Helloween concert on Thursday? I hear Beast in Black is opening for them!
Impus Major: No; I'm going to the Beast in Black concert instead. I hear Helloween is playing there too.
And now we've had two neighbors stop by to offer their condolences on the Prius. We have a great neighborhood; we just wish other people wouldn't visit.
| 1 person marked this as a favorite. |
Whelp.
I tried to add the two freed 8 GB memory sticks to the spare computer, which already runs 2 × 8 GB...
Pros:
The access was infinitely easier than on the main computer. The slots were right in the center, in open, with dual latches that you could easily open. Clear advantage of a full tower design.
Mixed:
Setting them right was still a bit of a hassle, but nowhere near as bad as in the ASUS minitower. I managed to accidentally unlatch one of existing memory sticks while fitting the extra.
Cons:
The computer didn't start with the new memory at all. Knowing better now, I rechecked if all the memory sticks are fitted correctly, multiple times. Nope, didn't help. Probably there is some sort of conflict with the BIOS setting, motherboard "remembering" the previous setup and failing to recognize the new one, issues with having all four ports occupied, or something like that.
Pros (again):
The computer normally started once I removed the extra memory so I didn't short-circuted the motherboard, the old memory, or the CPU.
I will have to experiment a bit later, but it feels less stressful with a spare computer where the whole set costed me 3/4th of the new RAMs...
Back to main computer and doing a silly thing.
I am installing Nioh 3 Demo to see if the extra memory in anyway, shape, or form will make it playable.
The prediction - it won't, not in any measurable way better than on the spare computer which has an actual graphics card.
| 2 people marked this as a favorite. |
By the Amaterasu!
It is actually playable!
Ugly because of the absolutely lowest possible graphics settings and terrible frame-generation...
But playable!
With a decent graphics card I could actually play it.
Why it has to be so expensive, though. About a half of what I spend on the new spare computer, over a third of the memory... *sigh*
The real test will be the bosses, though. They might shred the gameplay despite all that extra memory available...
The first boss is somewhat playable. Definitely better than it was before memory expansion or even on the spare computer...
| 1 person marked this as a favorite. |
Second boss is... Well, after a minutes of loading it killed me in seconds. So there's that...
| 2 people marked this as a favorite. |
Things that make IT managers' hair go grey:
(1) Violating industry best practices, NobodysHome is forced to perform his bimonthly password change (as in once per two months).
(2) As per usual, on connecting to VPN, Windows said, "Hey, I notice that your password changed! Sign out and sign in with the new password!"
(3) I tried, but Windows wouldn't recognize either the new nor the old password, nor would it let me sign in with my PIN or fingerprint, so I was locked out of my laptop with no recourse.
(4) I rebooted. With no VPN, Windows completely forgot about the password change. "Oh, you want to sign on with your PIN? That's AOK with me!"
So yes, a password system SO secure that disconnecting VPN seems to break it.
Good job, IT department. Carry on...
| 1 person marked this as a favorite. |
Speaking of ens**ttification...
(1) We got rid of our Roku because Roku made a deal with Crunchyroll whereby you can't watch Crunchyroll on a Roku device without having a Roku TV subscription. Vile enough to make me throw the device in the trash.
(2) On Shiro's recommendation, we got an NVIDIA Shield. It is a complete lemon. Around 40% of the time we try to use it, it crashes on waking up and has to reboot. After we're done watching and we've shut everything down, it wakes everything up around 20 minutes later for no reason. Today after it woke up it sent a screeching feedback signal through the sound bar, making it sound like a WW III siren in my living room. I notified the family that I was done with the Shield after less than 6 months and I'd rather get a laptop and let Impus Minor put a Linux distro on it and stream our shows that way.
(3) Impus Minor, on hearing this news, became downright giddy. To the point of, "We'll do it over the summer once the inheritance comes through and you have some time," became, "What if I pay for it now and you pay me back when we get the inheritance? What's my budget? How much fun can I have?"
So we're going to spend significantly more than we would on a new streaming device (Impus Minor estimates $300-$400 for a mini PC with all the hardware he'll need), but it won't be spying on us, it won't be locked down, and best of all it'll be Linux so we'll be able to get it to do all kinds of additional fun stuff.
I look forward to his creation.
Things that make IT managers' hair go grey:
(1) Violating industry best practices, NobodysHome is forced to perform his bimonthly password change (as in once per two months).
(2) As per usual, on connecting to VPN, Windows said, "Hey, I notice that your password changed! Sign out and sign in with the new password!"
(3) I tried, but Windows wouldn't recognize either the new nor the old password, nor would it let me sign in with my PIN or fingerprint, so I was locked out of my laptop with no recourse.
(4) I rebooted. With no VPN, Windows completely forgot about the password change. "Oh, you want to sign on with your PIN? That's AOK with me!"So yes, a password system SO secure that disconnecting VPN seems to break it.
Good job, IT department. Carry on...
Order of operations. Password changes enforced by GPO through Active Directory? You should connect the VPN before changing the password. If the VPN isn't connected then the computer isn't actually communicating with the domain controller for a password change to actually happen. Assuming they have their VPN configured correctly.
Of course, since you're also using Hello, they should just use SSO and MFA for the VPN, but since they're still not hip to the new standards and needlessly forcing password changes every 60 days, these are all just meaningless acronyms and other assorted words.
...Order of operations. Password changes enforced by GPO through Active Directory? You should connect the VPN before changing the password.
Check. You don't change the Windows password manually. You turn on VPN, go to an internal corporate site, and file a password change request so the IT automated system changes it for you.
If the VPN isn't connected then the computer isn't actually communicating with the domain controller for a password change to actually happen. Assuming they have their VPN configured correctly.
Check. The password reset process takes 2-3 hours. At that point, the next time you connect via VPN Windows tells you to sign out and sign in again using your new password. If you don't connect VPN, it's like the password change never happened.
Of course, since you're also using Hello, they should just use SSO and MFA for the VPN, but since they're still not hip to the new standards and needlessly forcing password changes every 60 days, these are all just meaningless acronyms and other assorted words.
Check. We *do* have SSO and MFA that we use for the VPN so it's separate security from Windows. The Windows password is only ever used to sign in to corporate Windows machines and nothing else.
But I still consider it a bizarre failing of Microsoft that a local machine can be informed of an Active Directory password change, and you can just disconnect the machine from the network and reboot it to make it forget that notification. Seems like kind of a security hole: "I stole this laptop and since the user had to change their passwords every 60 days here's a convenient Post-It with their password on it stuck to the laptop. Oh, they remotely changed the password to lock me out? No worries! Let me just disconnect from the network and reboot to get rid of that..."
Well, what fundamentally strikes me is the absolute lack of thought that goes into all of it. It's very much like the regulations that people like to make fun of because they make no sense whatsoever.
Question 1: Why were mandatory password changes implemented in the first place?
Answer 1: As far as I know, this was a precaution to minimize corporate damage in case of a password breach. A malevolent actor would only have 60 days' access (or whatever time period) to the compromised system.
Issues: A malevolent actor doesn't need 60 days to fully compromise everything the compromised computer connects to; it's a false solution to begin with, and it always has been. Worse still, users don't like remembering passwords. Back when I went into the corporate office seeing Post-Its with login and VPN passwords attached to monitors was commonplace. If it's not on a Post-It, it's likely in a text file on the user's desktop. Forcing password changes automatically makes your network less secure with no actual benefits.
Question 2: Why is password authentication only performed when connected to VPN?
I have no answer to this other than the most likely, "It's easier to set up that way."
Because now you have a situation where your entire basis for password changes is, "If someone compromises a password we can change it and the miscreant will no longer be able to log in," and you've broken that. As long as the miscreant logs in before connecting to VPN they don't have to worry about password changes.
So in a nutshell, the way our corporate security is set up:
(1) A miscreant gets into one of our corporate buildings.
This is stupidly easy. In spite of a badging system and security guards at each entrance, people let each other in all the time and security doesn't even look up from their desks at the practice.
(2) A miscreant finds an empty cubicle with a laptop, password, and VPN password.
Again, I could go to any corporate office in the U.S. and find this. I would guess that around 20% of all cubicle employees had such Post-Its back when I was going in.
(3) The miscreant leaves with the laptop, password, and VPN password.
(4) The employee notifies IT and they quickly reset the Windows password.
(5) The miscreant doesn't connect the laptop to the network, signs in with the old password, then uses the separate VPN password to sign onto the corporate network and now they have free rein.
So, *IF* IT has a brain, they'll also lock out the VPN password. Having never been in the situation, I don't know whether they do.
Due to lax security policies, stealing a laptop with password is easy. Due to VPN password policies, accessing that laptop and stealing all the local files is easy. Whether or not you could then get on to VPN is something only IT knows, but considering their slow response to everything (you now have to post to a Slack channel to get their attention), I suspect they wouldn't.
| 1 person marked this as a favorite. |
...and now we've had THREE neighbors come by and admire the Prius' tombstone and express sympathy for our loss...
Oh, and as for the NVidia Shield, in spite of the fact that it has automatic updates turned on, it apparently hadn't actually been applying updates. So I performed a massive patch and one of the listed bugs was, "Fixed an issue where CEC was crashing and then turning all devices on during sleep mode," which was exactly our problem...
...only to have the patch disable the down arrow on the remote. Which is just... just...
...impossible to code unless their whole team is now vibe coding.
Rebooting both the system and the remote fixed it, but wow.
| 1 person marked this as a favorite. |
And now we've had two neighbors stop by to offer their condolences on the Prius. We have a great neighborhood; we just wish other people wouldn't visit.
|
| 2 people marked this as a favorite. |
Question 2: Why is password authentication only performed when connected to VPN?
I have no answer to this other than the most likely, "It's easier to set up that way."
Oh hey, I know this! Most of the time when you take a computer away from the company network, it stores the current login info so you can get in without a network connection active. When you are on the internet, it doesn’t have a reason to reach out to the company server just to log in. When you activate VPN, it connects to the server to check the authentication, and that’s when it sees the password needs changed. Disconnect, and it has no reason to check again. Otherwise, you’d have to be on VPN all the time to use the computer. Some setups may require that, but most non-IT people hate that so it doesn’t get implemented.
| 1 person marked this as a favorite. |
And now Steam taunts me with a Nioh 3 sale...
I AM NOT READY YET!
Oh hey, I know this! Most of the time when you take a computer away from the company network, it stores the current login info so you can get in without a network connection active. When you are on the internet, it doesn’t have a reason to reach out to the company server just to log in. When you activate VPN, it connects to the server to check the authentication, and that’s when it sees the password needs changed. Disconnect, and it has no reason to check again. Otherwise, you’d have to be on VPN all the time to use the computer. Some setups may require that, but most non-IT people hate that so it doesn’t get implemented.Question 2: Why is password authentication only performed when connected to VPN?
I have no answer to this other than the most likely, "It's easier to set up that way."
And there's the crux of my question -- seems like the corporate password servers should be OUTSIDE of the company network to prevent such breaches. Or is that a no-no because of targeted attacks?