800-63-3
fx-private-relay
800-63-3 | fx-private-relay | |
---|---|---|
12 | 179 | |
699 | 1,420 | |
0.0% | 1.5% | |
0.0 | 9.9 | |
over 1 year ago | 2 days ago | |
CSS | Python | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
800-63-3
- Is 2FA possible for Chase?
-
I need a regex for a password validation in java
I see you got your regex, but please consider reading the nist guidelines https://pages.nist.gov/800-63-3/ It is an excellent resource in password policies that isn't shared nearly enough.
-
Twitter API hacked, Over 400 million user's database being sold online
Even NIST outright recommends against SMS/phone 2FA.
-
Looking to invest in authentication and verification in the digital world
ID.me is the first NIST 800-63-3 approved company. https://www.businesswire.com/news/home/20180816005147/en/ID.me-Becomes-First-Identity-Provider-to-Be-Approved-as-NIST-800-63-3-Conformant & https://insights.id.me/article/what-are-the-nist-800-63-digital-identity-guidelines/
-
Stupid Security Things
NIST has made a series of sensible guidelines:
https://pages.nist.gov/800-63-3/
They now need to be made enforceable, whether by government requiring them in government contracts, or indirectly by insurers excluding coverage if they are not met.
- Identity Management for WireGuard
-
How do I tell my security team to tone it down with the phishing e-mails?
I just tell our customer's compliance systems and vendors (there's usually a space to explain why you're not doing a given thing) that we'll start rotating passwords as soon as NIST recommends it (again) , and no sooner. Nobody has ever failed a test nor have I even been asked about this stance. Flies right under the radar.
- Password Never Expires Debate
-
New and Improved TSP site up and running?
Several hundred pages if you want to read it all - https://pages.nist.gov/800-63-3/.
- 90-day password-reset policy for "insurance reasons"
fx-private-relay
-
Protect your emails (short note)
Other services like this one: addy.io or relay.firefox.com (no pgp, as I remember)
-
Mozilla names new CEO as it pivots to data privacy
That isn't alarmist, but almost all privacy features in Brave are already in Firefox as well. Looking at this page:
- Chromium customizations: Not necessary in Firefox
- Client-side encryption for Brave Sync: https://support.mozilla.org/en-US/kb/how-firefox-sync-keeps-...
- DeAMPing: I think AMP has been dead for a few years now
- Limiting network server calls: I think this is a bit tangential to privacy, limiting calls is generally good but it doesn't mean you're transmitting less information. Brave's post comparing different browsers' first startup network calls is from 2019, not sure how Firefox performs today.
- Query parameter filtering: https://firefox-source-docs.mozilla.org/toolkit/components/a...
- Better partitioning for better privacy: https://developer.mozilla.org/en-US/docs/Web/Privacy/State_P...
- Referrer policy improvements: https://blog.mozilla.org/security/2021/03/22/firefox-87-trim...
- Fine grained / temporary permissions API: This is nice, I don't think Firefox has this.
- Social media blocking: https://support.mozilla.org/en-US/kb/enhanced-tracking-prote...
- Bounce tracking protections: https://blog.mozilla.org/security/2020/08/04/firefox-79-incl...
- Limiting the life of Javascript: https://blog.mozilla.org/en/products/firefox/firefox-rolls-o.... Not explicitly mentioned but I believe Firefox does have this 7 day limit as well, in addition to other protections.
- Private windows with Tor: Firefox doesn't have built-in Tor integration, but the actual Tor Browser is built from Firefox.
I think Firefox also has one or two features that Brave does not, like Multi-Account Containers, and some paid services like https://relay.firefox.com/.
-
Mozilla Monitor Plus: automatically remove your personal info from data brokers
> In a sense, it sounds like the advice of the services is less subscribing to them than trying not to have a few e-mails that map to your personal identity.
Firefox Relay is a great way to do that :) https://relay.firefox.com
Integrating that with Monitor is pretty high on at least my personal wish list.
- É seguro colocar meu email na deep web?
-
Django 5.0 Is Released
In case you're interested, Firefox Relay uses that stack and is open source: https://github.com/mozilla/fx-private-relay/
-
Ask HN: How can we help Firefox not to dissapear?
> In what ways has mozilla meaningfully dared to try and expand their revenue streams?
I think that Mozilla VPN is pretty nice. It's based on Mullvad VPN, so they seem to know their audience (given that Mullvad has a pretty okay reputation among many tech savvy or privacy conscious folks, a lot of which probably use something like Firefox as well): https://www.mozilla.org/en-US/products/vpn/
I guess there's also Firefox Relay, for those who might benefit from something like that: https://relay.firefox.com/
Not many other products to give them money for come to mind, though.
-
Ask HN: Streaming Player Replacement for Roku?
I've been dragging around a similar concern. My solution might be to use Mozilla's Relay for the email and Privacy.com for the credit card.
https://relay.firefox.com/
https://privacy.com/
That won't stop the data collection but it should mitigate how useful it is. Maybe?
- How would you differentiate against others with more money?
-
I stay reasonably anonymous online
Firefox Relay offers "randomized" phone numbers along with its emails: https://relay.firefox.com
- Firefox Relay – secure random email and phone number masks