emptywheelQ: If Elmo believes that 2FA is "bloatware," what does that say about the security of Teslas?
Matt Blaze@emptywheel it’s one step away from “anything I don’t personally understand or use is superfluous”, an attitude that the less powerful are all too familiar with.
Clipper Chip 
@mattblaze @emptywheel Let's be fair, it's not like that. The 2FA microservice is still working it's just the service that was responsible for sending out the messages got nuked. I strongly assume that was collateral damage when purging whatever other microservices and wasn't intended.
@clipperchip @emptywheel that seems like a distinction without much of a difference here. It’s clear he doesn’t think 2FA is very important, or they would have rolled back VERY urgently (assuming they know how to).
@mattblaze @emptywheel That's a dubious assumption, though. This might be more difficult than one would think, especially if it was some custom module. You could be right, but I believe it's more likely that this was not intended. I mean, it's certainly not in Twitters best interest to lock 30% (or whatever) of the userbase out of their accounts.
@clipperchip @emptywheel I believe they didn’t intend to break it. But I can’t think of any reputable large scale service in which restoring an accidentally broken 2FA login service wouldn’t be a 3 alarm fire.
@clipperchip @emptywheel like, WTF?
@mattblaze @emptywheel I like to think the fire alarm is screaming for a while now but everyone who's responsible for it has been fired :)
@mattblaze @clipperchip I'm a bit interesting in the cognitive model we think we're dealing with. Maybe I'm overly generous with Elmo, but I have to believe HE knows the value of 2FA. But his advisors are so inappropriate to the task. And he's surrounded by sycophants, who may not know or want to tell him he just threw away the locks on the most sensitive accounts he hosts.
@emptywheel @mattblaze The comedy is already pretty good from afar but man, I wish I could be a fly on the wall where these decisions and actions are being made and taken, it must be hilarious.
Natanael ⚠️@emptywheel @mattblaze @clipperchip it seems like a form of persistence-less reactionary thinking mixed with hubris and lack of introspection. He runs with whatever thought came up first and consider any detail he didn't think of himself as insignificant, because he's always been shielded from consequence in the past and never had to re-learn anything. (very similar to Trump, as some have noted already)
@Natanael_L @emptywheel @mattblaze I think it also has to do with the fact that until Twitter, Musk never ran a company that he didn't build from scratch by himself. With Tesla, SpaceX and Boring Company he knows the ins and outs. That simply is not the case with Twitter.
@clipperchip @mattblaze Have to love getting into a convo with Matt Blaze and someone I don't think I know who uses the moniker "Clipper Chip."
@emptywheel @mattblaze That hurts. I've been on Twitter for 12 years and followed, but you never even noticed me :(
@clipperchip @mattblaze Shit.
Well, I have 5% of the followers here than I did there, and probably the most interesting ones. Fixed!
@emptywheel @mattblaze I know your account on Twitter was quite popular so no offense taken. It's not that I replied to most of your tweets, only very occasionally.
@clipperchip @mattblaze The Mastodon migration is so exciting. Like being a teenager again.
@emptywheel @mattblaze Indeed. It feels a bit like the old Internet. Mostly geeks joining in and having a fun time. It's the golden time to build a circle here before more and more people join after Twitter has burned down (which looks more and more likely with every day).
Keith 🇺🇸🇪🇺🇮🇪🇺🇦@clipperchip @emptywheel @mattblaze
I remember the old internet. Then aol email addresses started appearing in newsgroups and the fun was over.
@kdvncm @emptywheel @mattblaze The early days of AOL were super fun, to be honest. Not only was it free since we could generate the 40h trial account codes but we also had toll free dialup numbers (reserved for AOL field technicians). And the chat rooms were a blast. Good times.
marthews 🏴
Paul Clarke@clipperchip @mattblaze @emptywheel
There's a few important points to consider:
1) Why are "microservices" being switched off in production, without testing in a preprod or dev environment first?
2) Who, in their right mind, would assume you could remove 80% of "microservices", with no adverse impact?
3) Why would anyone knowledgeable assume removing "microservices" would improve performance, when the performance issues highlighted are almost certainly caused by infra issues?
@Clarkeeeeee1980 @mattblaze @emptywheel
I know the answer to 1): It seems that Twitter never had a development or staging system. They *always* introduce changes directly into the production system. This came out a few days ago. And it actually explains why Twitter was always so buggy and often unreliable.
@clipperchip @mattblaze @emptywheel
Wow, hadn't seen that. As you say, explains a lot! Even more concerning is the fact Musk has spent his first couple of weeks pratting around, rather than implenting a testing platform.
JLab8@mattblaze @emptywheel try functioning #GDPR / #CCPA data requests...
Here's the full data from a 13-year old, active account. Even better, requesting the data triggered a seemingly permanent account lockout.
nothingmuch@mattblaze akshually, Elmo is "actually very familiar with [privacy and security], he said so himself: https://twitter.com/mmasnick/status/1590992955028176896
