Firefox offers this in the dropdown when typing a URL, there's a "Switch to Tab" option to take you straight to the existing tab instead of creating a duplicate.
It's been a little while since I've looked into the Open Banking API stuff - how easy is it to use this API as a consumer? Or do I have to create a business and apply for a license in order to use it?
Open Banking is in some ways misnamed - you can't as an end-user just do OAuth and get a data feed out of your account, you'll have to go via a third party who've jumped through all the hoops.
Got it! That's what I thought (feared). I wonder if there are ever plans to open it up to general use, or if it would be easy as an end user to jump said hoops.
I wonder if there are any open source third parties?
This is explicitly accounted for, as per the README:
> Many Postgres clients also inspect the pg_catalog to determine system information so Postlite mirrors this catalog by using an attached in-memory database with virtual tables.
Whilst there is an element of lab measurement involved, they do use field measurement, so metrics are collated from users rather than their own connection. This means that your data could just as easily be skewed by a browser/OS update that rolls out to a ton of devices at once, as much as anything at your end.
Do agree that the proliferation of acronyms doesn't help with wrapping your head around it all!
Yep, that's exactly what Splunk have done - scroll down the release notes linked to by the grandparent and the faulty regex is shown.
What's super daft is the proposed fix is only a further sticking plaster, adding support for the 16... range (and the 2020s decade) rather than all future dates. So in a couple of years a further patch will be needed...
To fix the fire this is probably the best solution because the risk of unintended side effects is very low. I would just hope it is then followed by a proper fix.
Not for long, it will be mandatory in the EU from the end of the year under the PSD2 regulations (though the deadline has moved back into 2021 for some countries, including the UK which is adopting them despite Brexit).
Issuers will start to decline card transactions for any merchants that submit payments that haven't gone through 3DS.
Hell yeah! Now we just need to get banks to stop using SMS 2FA and embrace an open 2FA standard like TOTP and our money (!!) will finally be almost as secure as our Facebook accounts have been for 5 years...
Instead banks should use WebAuthn. WebAuthn's credentials are directly bound to the DNS name. So anything that involves fooling the human like a phishing site can't work. The only site your authenticator can give the real-bank.example credentials to is... real-bank.example.
SMS 2FA can also be phished, so TOTP would still be better and WebAuthn is such a complete paradigm shift that it would take many years for banks to implement it. TOTP is so stupidly simple they could roll it out in a month, audits and all.
Not to mention that in order to have a decent WebAuthn experience, you need a Yubikey with NFC, which go for 30-60$ if I remember correctly. Cost of authenticators is why everyone switched away from RSA SecurID.
WebAuthn for relying parties (what the bank is in this scenario) just isn't very hard. And you don't end up with any long term secrets at all, so that makes the security story easier. But I sadly do not expect banks to adopt it anyway.
I don't see what a Yubikey with NFC is getting you here. For a laptop/desktop user any of the Security Key products in an appropriate USB form factor (USB C for some newer laptops otherwise USB A) would be suitable.
The high end phones are or in the case of the iPhone very shortly will be WebAuthn platform authenticators, there's nothing extra to buy. Apple released a video of the pleasant UX journey they want to promote, obviously being Apple it doesn't actually say this would work on non-Apple devices but I use it already so I know it does.
My bank never used SMS as 2FA. They supported mobile signature for… I do not even remember how long, at least 11 years now. TOTP was supported even before that and is phased out in favour of https://www.smart-id.com/
So very sad :( One of my all time favourite composers. Such emotive music that bring back so many memories, not least my wife walking down the aisle to me to Gabriel's Oboe. RIP.
