Insanely cool. I'm in the midst of building a web tabletop for Magic [1] that really just me and my friends use, but I'm wondering if there's a way I can contribute our game data to you (would that be helpful?).
Well, more games would be neat, but right now it's really tightly coupled with XMage - you can ungzip the stuff in https://github.com/GregorStocks/mage-bench/tree/master/websi... if you want to see what the format looks like. I doubt it's worth your while to try and cram your logs into that format unless you've got a LOT of them.
Ha I appreciate the thought, but it's hard to compare novel writing from thought leaders to funny images. I wish I could charge more, but I don't think the value is quite there yet. Maybe if I was strict about exclusive content (which I don't want to be; I like giving artists flexibility on where/how they distribute their work), I could get away with charging higher as well.
Yup this is indeed a limitation in that once a code is used, the next person essentially has to wait at least one minute before they can get another working code.
My target is smaller teams, where collisions (hopefully) happen less frequently. If you're a bigger org, chances are you also have the resources to just buy everyone their own seat/license to the account instead of relying on the employees to share one account.
Using a separate device (yubikey, mobile phone, etc) is always recommended, but this is a bit more secure than meets the eye. Someone would have to get access to your Slack account to view the codes, and to do that, they'd have to first get access to your work email (because Slack is password-less and emails auth links to you).
To do this semi-securly (because slack accepts regular passwords) you'd need validate the user's own mfa before handing out these mfa creds to prevent a slack account compromise from escalating... but slack can't do that unless there was an extension in the plugin somehow to prompt for an otp code.
At the moment I don't log/track anything (I don't even store user emails), but I can see an audit trail being extremely useful. Thanks for the suggestion!
One conscious decision made when building this was not to blast 2FA codes inside some channel where potentially anyone can see them, which would indeed be pretty bad when users are constantly being added to your Slack workspace.
Instead, codes are fetched by explicitly using the slash command and only users who are granted access to them can see them. So if a new person joins your team and types `/tfa` into the box, they won't see anything because nobody has given them access to any codes.
Even for my own newsletter (https://funnies.page) I set up email filters so I wouldn’t get email notifications in the morning. Eventually added RSS and the option to disable emails entirely.
[shameless plug] I run a web comic newsletter (https://funnies.page) for anyone interested in comics from contemporary artists. I’m always in search of the next great comic strip (like C&H), so if anyone has any favorites, I’d love to hear about them!
1.) Totally opt-in. Unless this cafe holds a monopoly on the coffee market on this college campus, students can choose to participate.
2.) It seems like the students have some control over what data to share. Hopefully it's not a binary all-or-nothing situation, but if there's a chance students can share whatever they want (and receive tiered cafe services in proportion to whatever they share), that seems kinda interesting.
I'm more than happy to grant companies access to me. But I want something in return. In this case, maybe a chai latte?
It seems to me that this idea is a race to the bottom. If people continue to give up first level information (name, address, etc) it devalues it because that info becomes commonplace and widely distributed. So what happens then -- dig deeper into your life? Does the 2019 version of this cafe want complete access to your phone / laptop? What about the 2020 version?
Oh yea I'm a huge privacy advocate and wouldn't set a foot in a place like that either. Although it's getting harder and harder it seems. Was just commenting that you get more than a 4 dollar latte.
[1] https://github.com/hansy/drawspell