aren't you happy? at least you see catgirl
Readit Newslousken commented on Why are anime catgirls blocking my access to the Linux kernel? lock.cmpxchg8b.com/anubis... · Posted by u/taviso
lousken commented on Vendors that treat single sign-on as a luxury feature sso.tax/... · Posted by u/vinnyglennon
Yeah, but in the center of Europe, customers are very price sensitive so you only target them once you've got adoption in the customers who can pay. Have to industrialize your processes before the cheap people are worth it and that takes time in startups.
Sure very smaller businesses are just cheap, but the rest want to get the most value out of that money spent. Finding and switching to alternatives with better price/performance is pretty normal I'd say.
lousken commented on Vendors that treat single sign-on as a luxury feature sso.tax/... · Posted by u/vinnyglennon
The necessary docs are for the SSO system. So while we can build the docs, those UIs change often and without notice, and each customer may see something different, depending on their individual config or permissions. It’s literally impossible to “just provide better docs” consistently without incurring heavy expense… thus the extra cost.
ok, so? this is the exact BS why companies are so up the microsofts ass
even though their products are mediocre, you don't have to deal with this stuff
if you want to be competitive, get your sh*t together - this is the reason why nobody wants to bother with alternatives
lousken commented on Vendors that treat single sign-on as a luxury feature sso.tax/... · Posted by u/vinnyglennon
>also you should be improving docs, if they are not clear, make them clearer
I've written the docs with a tons review and feedback, this saying comes to mind: "Nothing is foolproof to a sufficiently talented fool"
There are no more sysadmins at most companies, it's just desktop support and maybe Office365 admin who was desktop support but got promoted because they were elite ClickOps. Powershell/Terraform, that's for those DevOps people over there and they want nothing to do with us.
mentioned those 10% sufficiently talented ;)
not sure about US, but here in center of europe we still have sysadmins and not many devoops people
lousken commented on Vendors that treat single sign-on as a luxury feature sso.tax/... · Posted by u/vinnyglennon
Part of the problem is that every identity provider is different. So you'd have to provide docs for every single one of them and their particularities.
And customers don't necessarily read the docs, or even if they do they don't configure everything correctly.
And we're not even at customization that is particular to the customer. How to represent that in their identity provider and how to get your application to follow that in the way the customer expects.
> Part of the problem is that every identity provider is different. So you'd have to provide docs for every single one of them and their particularities.
no, you just provide the most used ones, once you have like top 5, that helps a lot
> And customers don't necessarily read the docs, or even if they do they don't configure everything correctly.
so just like with any other feature, really
also you should be improving docs, if they are not clear, make them clearer
it's basic sysadmin stuff, eventually 90% will understand and 10% will ask regardless of what you do, so just embrace yourself for those occasions
lousken commented on Vendors that treat single sign-on as a luxury feature sso.tax/... · Posted by u/vinnyglennon
At a past company, we had discussion about this exact topic. Despite wanting to offer SSO on a free/low-tier, we simply could not justify it.
SSO was by far our most expensive feature to support. It was the single largest bucket of support requests and a significant percentage of those requests required an engineer to get on a call with a customer (and their IT team).
We evaluated building better product/tooling to self-serve, but we realized that it likely wouldn’t solve the issue. SSO is security critical, so anytime things go wrong people throw their hands up and say “nope, I’m not the one that’s going to hurt my company”. They really just needed someone on our end to give them confidence.
Don’t get me wrong, we fixed many of the biggest issues - but there’s an endless supply of crap that can go wrong.
Sorry but that just means the feature is difficult to use on either side, so that would be at least 50% of your problem anyway. Provide good docs? How about that?
Every time someone has a problem create docs for it and after some time those questions will reduce significantly.
edit: also, for people implementing this the first time it should be obvious what happens when
1) they create a new account in your app (local)
2) if they create a new account within SSO provider
3) what happens with existing accounts during setup and if current users will be migrated over or not (or if they can use both singins)
how is the linux experience on the mac these days?
lousken commented on Secure Boot, TPM and Anti-Cheat Engines andrewmoore.ca/blog/post/... · Posted by u/gm678
what would need to happen for companies to implement things server side properly and do checking there?
Damn, those screenshots. It’s been so many years and everything looks so unpolished still. Wrong margins, wrong font size, bad font choice, etc. They really need a professional designer.
After all those years I still don't understand this argument. Have you looked at windows since vista? Don't they have designers? What difference does it make?
lousken commented on New downgrade attack can bypass FIDO auth in Microsoft Entra ID bleepingcomputer.com/news... · Posted by u/mikece
What if you have conditional access policy requiring phishing resistant auth to be able to login?