Jump to content

neil

Admin
  • Content Count

    2,179
  • Joined

  • Last visited

  • Days Won

    44

neil last won the day on 25 October 2018

neil had the most liked content!

1 Follower

About neil

  • Rank
    Admin
  • Birthday 15/02/1981

Contact Methods

  • Website URL
    http://forum.stirton.com
  • Facebook
    https://www.facebook.com/stirton
  • Twitter
    https://twitter.com/neilstirton
  • Instagram
    neilstirton
  • Skype
    neilstirton

Profile Information

  • Location
    Aberdeen, Scotland
  • Interests
    Shooting, Computing, ...

Recent Profile Visitors

4,358 profile views
  1. Hi all, Denwood are looking to sell off the old paper electric target boxes. There are 18 of them, some in better shape than others. £25 per box OR £375 (3 free) for all 18. Must be able to collect, from Denwood, Aberdeen as will not entertain shipping. These boxes are old, some are in better condition than others and recommend that you're willing to test and spend time on these for your own/club's needs to get them back into good shape (hence the price).
  2. neil

    Upgrading The Forum

    @slug33ukuk The update applied is exactly for that reason, to keep it as secure as possible. Tbh, I would enfoce 2 Factor Authentication did I not think it might knock out quite a number of members but that is the way the technology world is going, just look at your online banking for example. I need to sort out that donation button again
  3. neil

    Upgrading The Forum

    Upgraded to the latest version.
  4. neil

    Bisley Trolley

    Anyone interested in a "Bisley trolley" ... it could do with a bit of TLC (rub down and spray paint), otherwise fine. £20 (Free collection or delivery at cost)
  5. I'm not that old guys It will be from late 90s/early 00s ... I'll dig them out but sounds like too new for you all.
  6. Would anyone be interested in many years of Riflemans? If yes, I'll get more details. Otherwise, they're get recycled. Free to a good home (postage would be expensive, so prefer pickup)
  7. Sorry guys, but I know Jason well and don't feel comfortable (implicitly) promoting what looks to be a copy of his design and that he relies upon to contribute towards his income. Don't you think that the rifle manufacturers would have made their own instead of going to Lowe products if they could (at least morally)? Topic closed, and link removed. Housey, it's up to you how you wish to proceed out with the forum but I've received complaints from a few sources and I'm afraid cannot allow the forum to continue to promote what may well be a patent infringement. Sorry if that seems harsh but at the end of the day, I run this forum for everyone, for free and whilst I explicitly state that content is the responsibility of the poster, and that I accept no liability, it would be remiss of me to turn a blind eye here. All the best Neil
  8. neil

    Forum Security

    As @Hemmers mentioned, Authy is an alternative to Google Authenticator, and it also supports multiple devices including iOS, Android and any desktop which runs Google Chrome web browser. I currently use Google Authenticator but the point is, there are many options out there for you to choose from.
  9. neil

    Forum Security

    If you're wanting to have the 2FA setup on multiple devices, don't use the QR code on screen. Instead, you'll need to take a note of the number (seed) which the server generates and manually setup a new 'account' within the Auth app on each device. Been a while since I coded in COBOL too
  10. neil

    Forum Security

    OK, so if you're formerly from the IT industry, then I can talk technical. A server, in this case my server, will give you seed data which you enter into the mobile app on your phone's Authentication app. There are two common algorightms used for then generating a unique code. Both your device and my server have to use the same algorithm (HOTP or TOTP - both open standards) so that the server will be able to take the seed data, apply the alogorith at the time you submit your data and check if what you've supplied matches what it has calculated. i.e. your device can be offline, as the generation of your code is done purely by a mathematical alogrithm, and only your device + server know the 'seed' Many sense? Some reading for you - https://pthree.org/2014/04/15/time-based-one-time-passwords-how-it-works/
  11. neil

    Forum Security

    Hi Peter Regarding your question of accessing the forum when on holiday, if you use your phone as the "One Time Password" generator using Google Authenticator, Authy, LastPass Authenticator (the list of options goes on....) then you would: Go to the local library Browse to https://forum.stirton.com Login with your normal username and password Using your mobile, open the authenticator app and when asked by the forum, enter the 6 digit number that shows on your screen. You're logged in
  12. neil

    Forum Security

    Probably not even that long, especially when you live in Authenticator apps all day, every day, for connecting to your various clients to support their environments Doing work for the banks has some of the strictest controls in place with needing to be on a VPN which uses 2FA to connect, requires device certificates on approved hardware only and then complex passwords to boot.... Data ex-filtration is their worst nightmare, and you only have to look at the Spanish company who bought TSB and the 'joys' they've been experiencing the past couple of weeks post migration work gone wrong!
  13. neil

    Forum Security

    Hi Peter, I have to chuckle slightly in the irony in the other thread whereby there's all this discussion about GDPR and here you are saying " Making it even more difficult and you will continue to have sub forums that have not been posted in for many years." One of the key objectives behind GDPR is security of PII, and that includes but is not limited to "encryption in transit", "encryption at rest" and the security mechanisms in place for users accessing said information. The whole point of offering 2FA is to safeguard our users because let's face it, we all know someone who uses weak passwords and never changes them and therefore they are a prime target to have their account compromised. By enforcing 2FA, even if a member has a weak password then it is fairly useless to a hacker how obtains said password unless they also physically manage to get hold of the members' mobile/authentication device. I'm afraid that I need to protect the overall membership data, and myself, with the looming GDPR regulations coming into effect in 2 weeks on Friday, even if that means some unhappy campers ... you can thank the EU for these additional security measures which some may see as headaches
  14. neil

    Forum Blocked

    I tried contacting Talk Talk but they said that each customer would need to contact them and request to have the Home "Security" feature disabled to get around it .. they did not seem interested in listening about reclassification.
×
×
  • Create New...

Important Information

Privacy Policy