Email or username:

Password:

Forgot your password?
Niels's posts Post Back to profile
Top-level
Martin Schmitt

@nielsk So would it make sense to block MS on submission and IMAP ports? What legitimate business could they have?

28 June at 10:03 | Wall-to-wall | Open on mastodon.online
27 comments
Niels K.

@unixtippse If your users use the new Outlook which will replace Windows Mail you can’t block them.

28 June at 10:06 | Open on mastodon.social
Martin Schmitt

@nielsk You haven't tested whether it falls back to direct communication, though, have you?

28 June at 10:08 | Open on mastodon.online
Niels K.

@unixtippse No, I didn’t. I just had a support team member telling me that Outlook didn’t work and if we can make it work (it worked for him after a reboot) and that’s why I did what I did.

28 June at 10:10 | Open on mastodon.social
Leeloo

@nielsk @unixtippse
It should at least be possible to put your mail server on an rfc1918 ip, they wouldn't block corporate mail servers.

Use a VPN if you need access on the go.

28 June at 11:57 | Open on techhub.social
J$
Niels K.

@js @unixtippse Well, I operate a mail-platform for external users. I can’t do that because the support-team will kill me.

28 June at 12:34 | Open on mastodon.social
J$

@nielsk @unixtippse Well, I’d say its not up to you to break your spine to create workarounds for broken-by-design end user software. They have plenty of working clients to choose from.

28 June at 12:47 | Open on mastodon.nl
EndlessMason

@js
That's literally what a support engineer's job is lol
@nielsk @unixtippse

29 June at 9:25 | Open on hachyderm.io
Stefan Fendt

@nielsk @unixtippse

You can and you should block these.

These users need to be protected from themselves.

29 June at 5:38 | Open on mastodon.social
Nils Nakayama

@stefanfendt
So now a benevolent power should make the rules to save the pheasants from themselves?
That concept isn't new.

@nielsk @unixtippse

29 June at 22:09 | Open on famichiki.jp
Wolf480pl

@nielsk @unixtippse I think from a security point of view, it's better when it doesn't work. More than that, every time your server sees a user successfully log in from a Microsoft IP, it should reset (or disable) that user's password, since you have to assume it's compromised.

29 June at 8:16 | Open on mstdn.io
railmeat

@unixtippse @nielsk

It sounds like they proxy all the connections so all the mail passes through their servers. I wonder how long they keep it? I guess everyone’s emails become grist for AI.

I wonder what their terms of service say about that?

28 June at 10:07 | Open on fosstodon.org
Niels K.

@railmeat @unixtippse I dunno. But it is more less the same what they do with the mobile Outlook-clients

28 June at 10:08 | Open on mastodon.social
railmeat

@nielsk @unixtippse

I guess that is the world we live in now. Not really my preference.

Yet another reason to move my computing to self hosted and possibly Linux.

28 June at 10:11 | Open on fosstodon.org
Mr Cool

@railmeat @nielsk @unixtippse If we don't stop companies from implementing toxic business culture, it will get worse. Someday we will live in a world we don't really want to live in. We will no longer own anything, not even our data.
Too many people don't care and even defend these companies.

28 June at 10:40 | Open on social.tchncs.de
Tom

@mrcool @railmeat @nielsk @unixtippse

Agreed, except for the word 'someday'.

It will get worse for sure, but that's already the world we live in.

28 June at 11:27 | Open on social.crinstamcamp.com
Mr Cool

@Tom @railmeat @nielsk @unixtippse You are right. Even I can see how I'm slowly getting used to it. And that's how it will continue. Small steps, so that people don't realize that their rights and their data are gradually being taken away from them.

28 June at 11:42 | Open on social.tchncs.de
Menel :xmpp:
X

@mrcool

Too late! We already gave up our entire life to them.
Sadly, this is true.

28 June at 14:19 | Open on mstdn.social
Chewie

@railmeat if you have time, bandwidth and money, I would highly recommend self-hosting, I've learnt loads by doing it!

28 June at 12:14 | Open on mammut.gogreenit.net
seism0saurus 🦕

@railmeat @unixtippse @nielsk

It's documented, that they store the credentials to the Mailservers in cleartext on their servers and fetch the Mails there. It's a shitty design.

28 June at 10:09 | Open on infosec.exchange
railmeat

@seism0saurus @unixtippse @nielsk

Credentials in plain text? I thought we got past that in the’90s.

Where is that documented?

28 June at 10:13 | Open on fosstodon.org
seism0saurus 🦕

@railmeat @unixtippse @nielsk

Otherwise they can't access your Mailservers.
I'm not sure if the data at rest is unencrypted but at least it is reversible since they need it for login to your mailservers.
It is definitely not a standard like bcrypt or scrypt there the credentials are secured by a one way function

heise.de/en/news/Microsoft-lay

@railmeat @unixtippse @nielsk

Otherwise they can't access your Mailservers.
I'm not sure if the data at rest is unencrypted but at least it is reversible since they need it for login to your mailservers.
It is definitely not a standard like bcrypt or scrypt there the credentials are secured by a one way function

28 June at 10:18 | Open on infosec.exchange
Gavin

@unixtippse @nielsk Everything Microsoft does now should be viewed through the prism of surveillance capitalism and the collection of behavioural surplus.

Hijacking your email traffic is a great way to collect data for targeted ads.

28 June at 12:27 | Open on toot.wales
alihan_banan

@unixtippse @nielsk why not stop using it altogether instead of going all out sadomaso just to use their crappy software?

28 June at 19:49 | Open on mastodon.world
Go Up