Jeffrey Paul
Jeffrey Paul
Can I +1 this? I use HSM-based (Yubikey Neo) SSH keys for my remote hosts and am not a fan of using filesystem files (client keys/certs), especially _unencrypted_ ones, for...
docker-machine is abandonware, and Docker the company seems more interested in shipping proprietary, closed-source spyware (such as Docker Desktop, or Docker for Windows) than things like docker-machine. It's time to...
Why not let it work without installing the certificates? The older versions worked fine (with a certificate trust prompt). If I can't use the bridge any longer (there is zero...
I think it is a bug then that bridge completely fails if it is denied root to install the certificates. I will personally go back to using the last version...
The CSP should be sent in an HTTP header, and must be configurable because it's not always served on steemit.com. Look and see how condenser does it.
It's still not right. It should have a sane CSP by default. Development should override it using a development config. Please look at how condenser does it using the npm...
Why do we need to email them their account name? The approval link uniquely identifies them. They shouldn’t be prompted for it again except to confirm.
Maybe we should generate pubkeys for them when they choose their username. Then when they are approved, we prompt them for both chosen username and chosen password, and if they...
Seeing as the username they chose is just a proposed choice (and not real until their account is actually created), why not just prepopulate it on the final step after...
It’s not a private key, and we should not call it that as a result. I don’t object to changing it from “password”, but it isn’t a private key.