The Core

Why I’m done with Chrome

A few weeks ago Google shipped an update to Chrome that fundamentally changes the sign-in experience. From now on, every time you log into a Google property (for example, Gmail), Chrome will automatically sign the browser into your Google account for you. It’ll do this without asking, or even explicitly notifying you.

I was asked for recommendations for enterprise level endpoint protection products so I wanted to ask Th3 Core if anyone had either used or worked in a big operation with a decent Endpoint Protection package. I don't even use AV on most of my systems anymore so I'm a bit out of the loop these days as to what's good.

Right now the organization is looking at

• Palo Alto Traps
• Cylance Advanced Threat Protection
• Carbon Black Defense

Anything to say about these or suggestions to add?

Have any of The Core bothered setting up DNSSEC for their domains?

I've been reading articles that range from "It's the future of DNS" to "Forget about it". Just wondering if anyone here had experience they could share. Before I invest the time and money I wondered if it was even worth my time for the average site. I could see the benefits if I was running the PayPal site, but I doubt the sites I'm running would be the type that require secure DNS.

When Google dropped Reader, and the developer of FeedDemon ended the project, I was a bit lost for a good RSS feed reader.  Like a lot of people I jumped on Feedly. I even got in early on the paid Pro version and snagged a lifetime subscription. I'm a heavy RSS user and wanted the most features possible.

Fast forward a few years, and Feedly development doesn't seem to be going anywhere. You can't even make a keyword feed or filter keywords out of a feed. The interface is nice, but they just don't let me fine tune my feeds.

Always looking for an alternative that's better, even if I do have a Pro Feedly account, I came across InoReader. This is a feed reader on steroids. The options menu alone had me hooked. They's got the basics down pat, and have an extensive set of rules and filters so that I can keep all of my thousands of feeds yet only have them show relevant information. Not sure why Feedly couldn't have done this from day 1. I'm finally enjoying curating my RSS feed collection again.

Saw someone mention this host on another forum. This looks too good to be true.  http://www.cloudatcost.com/pricing.php
One time payment and you own the server space for life? There's gotta be a catch. Hosted in Canada.

Anyone heard of this?

They have a huge sale on now. Looks too good to be true.

Password-protect your Wi-Fi hotspots and ask for user details too, rules ECJ
https://nakedsecurity.sophos.com/2016/09/19/password-protect-your-wi-fi-hotspots-and-ask-for-user-details-too-rules-ecj/

Europeans who provide Wi-Fi hotspots aren’t liable for copyright violations by the strangers who use them, according to Europe’s top court.

However, there’s a whopping big “but.”

The European Court of Justice (ECJ) also ruled that the holders of infringed copyrights can demand that those Wi-Fi hotspots be password-protected to deter future violations.

What’s more, users will be required to “reveal their identity to be prevented from acting anonymously.”

What a brilliant plan to stop the spread of open WiFi...

Facebook ads still slipping past Adblock Plus via stripped-down code

The Adblock Plus crowdsourced hacker militia can’t keep up with Facebook’s disciplined army of engineers.

When Facebook first announced it would circumvent ad blocking software, Adblock Plus (ABP) built a workaround in two days, boasting that “We promised that the open source community would have a solution very soon…This time that community seems to have gotten the better of even a giant like Facebook.”

But it’s been a month since Facebook broke ABP’s last workaround, and the social network’s marketing messages are still getting through. Despite the fact that ABP’s browser extension gets the final say on what appears on your screen, it can’t build filters fast enough when Facebook has total control over the code it serves.

I was asked to make an e-mail address on a new domain, like:  info@example.com

This e-mail address would forward to a bunch of customer service agents. However, none of these customer service agents are members of this domain. They want the ability to reply FROM info@example.com to the customers. (The customer would only see info@example.com when receiving replies from the agents.)

I can't add this address to the domain that the customer service agents use. (Long story)

My first idea was to put the domain on Google Apps. They have a new thing called Collaborative Inbox. It's a fancy Google Groups interface that looked like it would work... but to work correctly these customer service agents would need to be members of this Google Apps account. The company didn't want to pay for multiple Google Apps accounts for this purpose, so I'm looking for another solution.

Any relatively cheap solutions you could suggest?