General IT Thread

Not so sure. Steal a laptop / iPad and a book containing passwords and you can empty bank accounts not just houses. Just don’t write them down. I did an audit in a school recently, all the head’s usernames and passwords were on a piece of A4 on the wall next to her desk. She saw nothing wrong with this. Every password was the school name 123! Suffice to say that’s now changed.

I probably wasn’t clear in what I was trying to say.

Let’s take an example of an old person who doesn’t deal well with technology, it’s better for that person to write unique passwords down in a notebook than to reusing the same password everywhere.
Because there’s so many data leaks with emails and passwords (Check your email here against a database of known leaks:, as long as the password notebook is stored in a safe place (like a safe :smiley: ) or well hidden, then it’s good enough.

But every security choice you make depends on what is called a “threat model”. Who and what are you defending against?
There’s no perfect solution, we just need to try to use common sense based on the threat model.

I’ll say this much, I don’t know how they did it but my wife decided to use a banking app from her phone on public wifi at a campground about two years ago and they swiped $2400 from our bank account in less than 20min. I was so mad, I don’t even have a banking app and I definitely don’t bank from my phone

on a private PC (not work) on a VPN from my home.

There is a lot that can be done to you when using public WIFI, Still pretty unlucky, but that’s the risk of using sensitive data on an public network

I’ve sat in a Mexican hotel lobby and watched someone network snoop the WiFi on a laptop. Also watched a guy a Playa Del Carmen crack open a random ATM and hook his laptop up to it and start playing with it.

maybe I’m paranoid, but I’m probably not.

Hence my caveat, for any passwords which link to financial institutions, don’t write the actual password, use a clue to where it can be found that draws on something only you will know. In my example “54.15.3-6” sends you to your favourite autobiography, page 54, line 15, words 3 thru 6.

If a burglar breaks in now, they need to actively locate your paper notebook (which should be hidden and they’re unlikely to be looking for anyway).
When they try the entry for the financial institution(s), they’ll soon figure out the password isn’t actually the password. Even in the unlikely event they manage to figure your “code” out, they will have long since left the your property (where the book is) and enough time should have passed that you realise you’ve had your passwords stolen that you’ve changed them.

Aside from this, most Financial Institutions now use 2FA, so just having the password isn’t much use in isolation.

Couldn’t remember a better thread, so I’ll post my question here.

I have streaming subscriptions for Netflix and Amazon Prime Video and I’m looking for an Android box/stick that is certified for both. This is a pretty extensive list from where I’m trying to pick one:

Since I’m unable to acquire Nokia 8010 box, can anyone recommend a device from this list?

I’m leaning towards Xiaomi Mi Stick 4K as it is readily available here but is 2GB or RAM really enough and does it get hot when you’re using it constantly? I’d like to use it for streaming while connected to a VPN service (quite likely ProtonVPN) because the libraries of streaming services are much bigger in other regions such as USA, Canada or UK.