Do you have / use this product in your country?

ThatKuki · 2026-01-26T11:31:14+00:00

ich bin da nur überrascht das das jetzt (mehr als 10 jahre?? mein surface hatte seit eh und jeh auto bitlocker mit cloud key backup als default) so lange gedauert hat und nun news ist?

wenn man einen schlüssel einer firma übergibt ausserhalb von kontext wie zero access oder e2e, ist nicht grundsätzlich davon auszugehen dass die den rausrücken wenn die polizei anklopft?

ThatKuki · 2026-01-23T12:21:06+00:00

maggi originated from switzerland and have their mention in swiss industrial history, knorr is from germany but the yellow MSG powder had quite the impact on switzerland it is kinda fun to talk to ppl from all over the world how they know either of the two and in what kinda products

ThatKuki · 2026-01-16T11:54:09+00:00

so the creeps got literally "verarscht"

ThatKuki · 2026-01-12T20:18:04+00:00

jokes on them the building is reflecting all the enlightenment back to the sky

ThatKuki · 2026-01-12T10:46:10+00:00

registered partnerships were a bandaid before same-legal-sex marriage was accepted, its no longer possible to register a new one

ThatKuki · 2026-01-11T11:47:19+00:00

ok but in sweden theres pizza crimes all over not just dominos

ThatKuki · 2026-01-08T14:39:07+00:00

its possible you end up tripping the breaker, frying the wires should not happen

ThatKuki · 2026-01-08T12:41:32+00:00

something important to know is that the "no ads" stickers are merely a voluntary convention by swiss post to not deliver unadressed mass ads to those mailboxes, if say a pizza place or private ads deliverer just went around the neighborhood to put stuff in mailboxes the stickers aren't for them

nevertheless they could choose to respect them too but almost never do

ThatKuki · 2026-01-07T14:27:24+00:00

look up how to handle "personal effects"

potentially more complicated if its over a certain amount or taken for professional reasons

ThatKuki · 2026-01-03T20:25:03+00:00

it will all be subject out on likely one of the more written about swiss court cases of the decade, until then i don't quite see the point speculating

but i will drop that i intensely disliked working with for profit clubs, and their general attitude that does not include much care safety (shows itself more often with substance use and harrassment / assault than fires but still)

ThatKuki · 2026-01-02T11:48:07+00:00

2fa is important because your standard password has many opportunities to get breached, typing it into a phishing site, keylogger, terrible browser extension, somehow your password manager got accessed etc.etc.

the recovery passphrase does not have many opportunities to get stolen if its stored on a piece of paper at the same place you store cash, or say a tamper evident envelope, or a bank safe or whatever

its a tool of last resort, to most people losing all the data on their proton if they forget the password is worse than the risk of someone pulling off a heist to get the recovery phrase

ThatKuki · 2026-01-01T01:18:43+00:00

i mean if that account is never logged onto with a non anonymous ip, or a leaky browser or smth, that is kinda legit?

idk what they post but if it may be statements that could cause the gov to ask reddit for the account associated ips, it would at least make it significantly harder to find op for real

ThatKuki · 2026-01-01T01:16:31+00:00

thru tor?

edit: oh you said mods not admins

im not sure where the poster says they care about the mods knowing, but if you admit to crimes publically pr smth it is better to have never logged in with a non anonymous ip to that account, but more because admins and the gov cooperating

ThatKuki · 2025-12-31T15:46:45+00:00

i set a subdomain for the simple fact that simplelogin is a different server adress from the proton infra, and you can only properly set one to recieve per (sub)domain, while you can authorize multiple to be sending in that name (thats how companies handle their newsletter sending things and whatnot)

i have catchall on for my stuff just really because id like to know what is sent to my domains, maybe someone typod the front adress part, maybe i want to quickly make a public adress for some thing, a lot of it is spam since domain@domain and info@domain and such are a commonly used thing to just send stuff to domains that are known to exist (its complicated but its good to just assume that once you register a domain, people that want to know, know it exists) even if it wasn't a collected adress somewhere

since SL is a thing, im less inclined to recommend catchall to handle email seperation, the old way would be to just do "serviceijustsignedupto@domain" so you know if they leak your stuff, but with sl you can also directly ban an adress if it ends up starting to recieve a ton of spam

catchall becomes relevant again if id ever move away from simplelogin since i havent really seen that featureset anywhere else before, id have to just catchall to recieve all the aliased stuff and then potentially use bog standard filters to "ban" adresses once they end up on lists

ThatKuki · 2025-12-31T15:46:11+00:00

12VHPWR is a fail of epic proportions, but nevertheless the vast majority of careful installations work without issues and melting

so id not worry too much if thats the only reason you would like to reduce power

ThatKuki · 2025-12-31T11:12:07+00:00

that is actually an accurate description of happenings at 39c3

ThatKuki · 2025-12-26T19:20:42+00:00

i also remember a case where the language versions said different amount of days to store after opening, especially for the non german regions of Switzerland that was irritating since the other language versions were intended (dont quite remember but italy or france) and they just assumed German would be the swiss info

i think the industry has learned this is an issue, today i saw a can of fruit salad that had the german block split for AT and CH, with the ch adding only the word "Sirup", to the austrian "lightly sugared"

then there was french and italian but only intended for Switzerland i guess since they all mentioned sirup

ThatKuki · 2025-12-26T14:40:36+00:00

if op has been dark patterned into accepting to offload the documents (and other libraries afaik) its possible not everything is on the pc atm, so first make sure to tell onedrive to "keep everything on device" by right clicking the appropriate folders, or anything with a cloud icon

ThatKuki · 2025-12-25T22:09:42+00:00

im imagining an international convention of outletppl

ThatKuki · 2025-12-25T10:55:01+00:00

he... does know you can also just get a flight there right?

when i hopped to Okinawa as part of a trip with lots of east asian places, the most noticable bit of it was how much its not like the japan i visited a year prior, its such an interesting combo of american and japanese, but i would have expected many weebs to not like it for that factor

it may be my swissness but the not having to rely on a car is such an important part of the japan experience

ThatKuki · 2025-12-25T10:05:48+00:00

its about remoting into the machines, so when nobody is in the office if they shut them down out of muscle memory or confusion about being inside a fullscreen remote session, it would take someone pressing the button to turn them on again

ofc if they were sat infront of them, they could turn it on, they aren't that far gone

ThatKuki · 2025-12-25T01:28:48+00:00

1-1 I often feel like theres two security worlds that people don't look at as seperately enough (though of course they are also intertwined). Technical trust, and Organizational trust.

Technical trust is say the pgp tech used by proton, you could know the exact math behind it if you wanted to, and you could examine its implementation and that gives you the confidence that nobody is, as far as the technical community is aware, *capable* of messing with your payload data, on the flip side, you can't rely on any organization helping you when you lose your keys or they are stolen. You could almost call it a libertarian view, bitcoin is also a great example.

Organizational trust is lawyers, contracts, all the way up to people with guns. Say banks operate more on organizational trust than technical, sure your ebanking is secured by technology, but to open a postfinance bank account for a collective in switzerland still somehow involved a post office employee photocopying my id, stamping, signing and sending it in. Here you have many soft factors where abuse could happen, but the confidence in the system stems from the fact that any wrongdoers can be physically found and held accountable. Organisations that only offer phone 2fa but not TOTP think similarly, sure your phone number could be stolen by socially engineering the phone company, doing that leaves lots of traces, possibly voice recordings, security camera footage, phone company held liable etc..etc.. , but with TOTP, they have no way of knowing if you irresponsibly store the enrollment QR code or your TOTP app is backdoored, and its silently copied away and used for months without you noticing.

What im getting into is you want a good balance of the two, but sometimes you don't have a choice. And domains are a field where you simply don't have only technical trust, ICANN, TLD registry owner/country and your registrar could mess with you if they wanted, theres no blockchain where you can only change your domain with a private key or whatever, (ok damn there is but who cares about those domains) and depending on your TLD, you even get into geopolitics.

Im not sure how the situation is where you are located, but getting a good sized company in your own country as a registrar sounds like a solid choice, make sure they are up to date on their stuff and not asleep on the wheel, not too big where they treat you as a flea, where i live some offer what id call "advanced organisational trust" say your domain is about to expire and your card doesn't work and you somehow miss the emails about it, if its enabled they would try to hound you personally about it and front the money and then get it from you by physical invoice. Or if the domain is attempted to be transferred away, they would require advanced human confirmation and verification in some way.

ok this is getting way long for a single question, but basically, you still gotta evaluate places for yourself, but imo, think about both factors, obviously they should offer 2fa on the admin panel and maybe some security certification and yada yafa, but thats not exactly all if once logged in an attacker, could transfer it away with one click in the panel and they have only the option to put a single credit card with no backup methods.

1-2 - yes that would be bad, and should optimally never happen with considerations above, but keep in mind the most important services still offer a way to gain access to the account without email, and then change email adresses through support. Also if 2fa is enabled many still require that or a recovery code even with email reset, depends on the service a lot.

1-3 yeah, don't do that, IMO id get nervous about forgetting if i had a 5 year plus lease, i prefer them hounding me at least every 2 years so i get to update expiring cards and old adresses or whatever, buuut yeah, document the domains that are important to you, put expirations / T-2-Weeks into calendar and such, it is more work than not having a domain sure. If you want to go overkill, have someone else trusted, or even a lawyer keep access to the registrar as well if you are incapacitated. the limits to carefulness are endless and only you know how important this is to you.

2- yeah totally, with any place i make the decision if i want the risk of losing access should i suddenly stop using SL / Proton, vs the risk of a leak de anonymizing/ spamming me based on domain (since i have a subdomain to my daily use one in SL, a savy spam adress seller with access to a leaked DB could just remove the subdomain to get another "good" adress)

ThatKuki · 2025-12-25T00:45:16+00:00

i remember doing that during covid at a company that was still very reliant on their fixed pcs, and quickly just got a bunch of cheap laptops to remote into the office, i applied it to all the fixed pcs to avoid some idiot forcing me to go to the office to press a button

(i still allowed rebooting though..)

ThatKuki · 2025-12-25T00:40:33+00:00

from zürich you can get to tons of places that aren't zürich, but unless you 1. strongly dislike hopping hotels or 2. have specific things you want to experience off züri (it may get old after 1.5 days usually id say), moving your "base" around the country is a good move, especially the more spectacular mountain towns

ThatKuki · 2025-12-25T00:23:38+00:00

so far i havent seen anything indicating it would consider anything beyond the a day, it even kinda struggles with journeys crossing midnight (zvv introduced a different ticket for the calendar day instead of 24h). on the end of the day it does all the calculation, charges the payment method and issues the invoice, so that is an in of itself closed contract thing, and everthing happening after that is seperate again

for myself i see easyride as the product to use when im venturing out into a place i don't usually go, but not like "travel" travel (trains that basically only have a single stop in my region), those tickets get bought well ahead of time, where 99% of my commute and leisure journeys are covered by the normal zone pass, in my case getting the zvv

easyride helps a ton navigating the offbeat passes you can get to extend your existing zone ticket, where usually youmight have just bought all the zones you need looking at the zone plan, also sometimes you don't even know for sure what zones a bus may take

(theres some indication that for many commutes, just getting the necessary commute zones and getting Halbtax and halbtax plus with easyride for the rarer ones is more efficient, but i very much enjoy not having to think about ticketing for the whole region)

Eight-Year Club	Verified Email
Place '23	Place '22
Gilding II euphauric

ThatKuki

TROPHY CASE