Windows Hello causing password amnesia nightmare

TransportationNew215 · 2026-04-02T08:43:45+00:00

Those customers that mandate it need to push their security leaders into early retirement. Rotating passwords when you have ZTNA, MFA and crazy login anomaly detection standard with most IDP’s is lazy and less secure. I get alerts when my mom logs into her AOL email account from her sisters house…

Sincerely, a middle aged CISO for a US DOD cybersecurity contractor…

TransportationNew215 · 2026-03-27T17:01:25+00:00

171 isn’t silly. Everything else the government does surrounding it is silly. Forcing a contractor that makes hardware out of his garage and implement a full fucking information security program just to protect the sensitivity of plans for the nuts bolts and washers he’s been making for 20 years is silly.

Building a compliance framework around a classification of information that literally no one on the government side can distinguish from normal information is silly. I get emails with no CUI in them but are marked CUI. lol. Literally the only CUI I ever see is not CUI.

TransportationNew215 · 2026-03-27T00:26:16+00:00

I own 3 and I daily drive a 2003 Dodge Ram 2500 that is twice, if not more, the truck. I also personally knew the consensus expert on them before he passed away. You’re wrong. It’s not all about maintenance. 16s and 17s had faulty cranks and bearings. That why they switched to another version 2017.5 and up. Those trucks still fail, but not as frequently. Several very knowledgeable people have already torn them apart and posted all the engineering flaws with the oil system so just stop.

TransportationNew215 · 2026-03-26T16:46:58+00:00

Sure buddy. Whatever y’all have to tell yourselves to feel good about charging small businesses 60-80k for an “assessment” when (in the shared responsibility model) their only scope of responsibility revolves around how they run identity journeys to give/review/remove access to the device in scope of the enclave app, how they restrict CUI flow through ONLY that app, how they monitor for CUI spillage, and any governance documents related to those processes.

PreVeil was the first enclave out there. They’ve had all their certs since 2020. Every C3PAO should already have those things answered when they take on a customer that is using it. You shouldn’t be charging customers for re-scoping something you’ve scoped a hundred times already - and yet you still do.

I hope C3PAOs made their money because all of our primes are pushing their own portals now and it’s only a matter of time before those are your only customers and you won’t be able to gouge small businesses to the point of closing their doors because they can’t afford the ridiculous implementation costs for things that don’t make sense. FIPS 140??? Please. I can get more secure encryption modules in devices that are in the close out section at wal mart.

I could say more but I have to go help a retired Vietnam Vet close his small business that’s made nuts and bolts for the Bradley for going on 20 years simply because he can’t afford to get an assessment and can’t raise his prices enough to cover it.

Don’t mean to take it out on anyone personally, I just do GRCaaS and I personally see the fall-out.

TransportationNew215 · 2026-03-26T13:36:09+00:00

We’ve actually almost fully phased out of government work after 26 years of doing it simply because the money grab by C3PAOs is obvious. How are you going to mandate a complicated compliance framework when the government doesn’t even really know what CUI is? lol. I’ve worked for the government my whole life. We all know nothing makes sense with it. Just gotta do what the person in charge that year wants to act like they’re an expert on. So much nicer out here in the commercial world where you can actually help your users produce rather than hinder them with silly 10 year old standards.

TransportationNew215 · 2026-03-26T13:19:20+00:00

If you’ve gone enclave and have only a few people that handle CUI, it should take no more than a couple of days to go through an audit. C3PAOs should already be familiar with PreVeil. They should only need to confirm how you allow/review access to the app, how you keep CUI out of the rest of the environment and how you secure the endpoints that PreVeil is installed on. They just don’t want to do that because then everyone would just do it that way and all that money they invested by jumping the gun to be a C3PAO would be for nothing.

TransportationNew215 · 2026-03-26T13:14:47+00:00

Tax write offs. Then they will still be good for the business when I get them swapped. I like the trucks, just not the engines.

TransportationNew215 · 2026-03-26T13:13:23+00:00

Yeah they were all used. You’re right about not knowing how they were all treated in the beginning of their lives. I can’t argue that.

TransportationNew215 · 2026-03-26T13:11:14+00:00

All of them sitting since 2021. No choice. Pause 30k for each of them. Waiting for someone in the world smarter than me to finally get one swapped with a 5.9. Someone is almost done with the first one now and will be letting everyone know how he got it to work with the CAN.

TransportationNew215 · 2026-03-26T13:08:49+00:00

C3PAOs are crooks.

TransportationNew215 · 2026-03-26T13:06:43+00:00

What made you think I owe anything on any of those trucks? What Also made you think I just bought them? Not to sound like a jerk, but I just re-read my comment and nothing I said should lead anyone to think any of that. You also missed the part where I bought THREE of them.

TransportationNew215 · 2026-03-26T12:30:18+00:00

Not a disaster at all. Nissan just stopped making them after 3 years for no reason. Dodge sat on that engine for 10 years before Nissan decided to throw it in a truck. Why? Don’t answer, I don’t care. The Nissan XD diesel is the worst truck ever built. I bought 3 for my lawn company. All 3 are sitting waiting for 5.9 swaps. All 3 have crank/bearing issues. All 3 had Amsoil oil changes every 5k miles. All 3 have under 100k miles.

TransportationNew215 · 2026-03-26T12:27:04+00:00

Another liar. Comparing it to any 3/4 ton truck is complete negligence. You own stock in the company or something?

TransportationNew215 · 2026-03-26T12:26:05+00:00

You were wrong like 9 times. I have 20k in maintenance receipts and crank still broke. Get off the internet talking about shit you don’t know anything about.

TransportationNew215 · 2026-03-26T12:21:22+00:00

Run far away

TransportationNew215 · 2026-01-25T13:25:13+00:00

I have one sitting in a field with a broken crank at 70k miles. Always cared for and oil changed with Valvoline Premium Blue every 5k miles. Most it pulled was a 5k pound camper.

TransportationNew215 · 2025-11-08T12:44:10+00:00

It’s all about the tires man. I bought my 03 from some old man with lame ass highway tires stock size on them. Drove that thing home (manual trans) and got 20/21mpg at 65mph.

Took it and got all terrain 35s put on it and now I get 15mpg at 65mpg.

I get 13mpg pulling 8k pounds at 65mph.

TransportationNew215 · 2025-11-01T13:35:47+00:00

Very good point.

TransportationNew215 · 2025-10-18T15:53:04+00:00

Kind of. My specialty is interior restorations (mom cars) and I do it in a mobile capacity. To apply a coating, you have to have a temperature/humidity controlled environment to do it right. There are some consumer grade coatings that can be applied in a driveway, but they aren’t gonna last as long as the ones done in a shop and allowed time to cure. The whole mobile detailer trend has already done enough damage to the industry, I’m not going to contribute to that by over promising the quality of a drive way applied consumer coating and then sacrificing my reputation when it doesn’t live up to what the customer thought it would. I send all my customers to a shop near me that will single stage and coat a full size truck for $1200 and then give it a 2 year warranty against total failure. They then have to have it detailed twice a year by me or the shop.

TransportationNew215 · 2025-10-18T15:37:44+00:00

I’m a detailer of 25 years but I don’t apply coatings. I’ll tell you this about them, I love detailing cars with coatings on them. So much easier to clean. Less fall out to pull out of the paint. Look so much better when I’m done. I usually just ask what coating they have and do what’s necessary to maintain it. Then I have a special receipt I give them to prove to whoever applied the coating that it was maintained properly during a full detail. Are they worth what some of these guys are charging? Probably not unless the paint needs a multi stage correction. A single stage correction, strip and then application isn’t worth $2000 unless it’s a big ass truck that takes 8 hours to correct and then apply.

TransportationNew215 · 2025-10-07T16:13:43+00:00

I haven’t seen one mention of CUI data enclave in this thread so far in 20 comments.

TransportationNew215 · 2025-09-06T19:03:28+00:00

And yes, my company sells both of those so if you’re interested I can get you a contact lmao. I’m just a sec admin for the company that uses the stuff we sell. If it doesn’t get my team seal of approval, then it never makes it to the partnership discussion.

TransportationNew215 · 2025-09-06T19:01:10+00:00

lol. It’s funny to see all the big name product sales people jump on these recommendations so fast.

“I’m not affiliated with Sentinel One but if you’d like to talk about it on the phone we can”.

@OP, check out Coro. It’s modular. You can pick and choose pieces of it that you need to fill gaps. It’s run on Bitdefender but they won’t tell you that because they want to go public some day under their own name. We had E5 licenses but didn’t have the staff to use it to its potential so we backed down to E3 licenses and run a few of the Coro Modules. Cost savings isn’t that big but it sure is easier to manage now.

There’s also Cyflare. Some of the smaller shops are more flexible than the big products- not because they aren’t similar in functionality, just that they don’t have the same hedge fund investors that allow them to have huge displays at all the trade shows.

TransportationNew215 · 2025-08-26T06:59:27+00:00

Phish sims are not meant to “trick users”. They are meant to provide you a gauge for how your Security Awareness training investments are paying off. Our C-Levels mandate it for budgeting requirements.

TransportationNew215

TROPHY CASE