Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 days ago.
Improve this question
I'm building a web app with firebase (fire storage, functions, hosting).
The location of the project is eur3.
I will not use google analytics. I will not use google fonts.
Do I have to inform the user that I'm using firebase?
Is user data sent to the US (or US Google servers) even though my project location is eur3?
Does firebase set cookies through the iframe on the user device with unique identifiers?
if yes, is that identifier used to track the user elsewhere?
I want to set one cookie to check if the user visits for the first time. Do I have to inform the user?
Is there a flowchart by google to make my web app EU ready?
Related
Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 months ago.
Improve this question
I received 30+ emails in all languages (often eastern European) that always say the same thing :
"hello
We received a request to access project-0000000000 with this email address. If you want to sign in with your (your email) account, click this link:
Access to project-0000000000
If you didn't request this connection, ignore the email.
With respect,
project-0000000000 team"
I have received 30+ of these, without any prior action on my side. They generally have an URL "leading to the project". The URL seems based on firebase as well (xxxxxxx.page.link/?link=https://0000000000.firebase.com/...), but I wonder if it could be malicious, depending on what comes at the end of the URL, I guess.
If it's an attack, I guess the vector attack is the URL, because I cannot see any other option.
If it's not an attack, I wonder why on earth I receive all the emails, and what I can do about it.
The strangest thing, for me, is that I once received an email in Turkish thanking me for my contribution to one project. This email had no URL, so no obvious attack vector. I don't know if it was a case of social engineering, or if someone is impersonating my email address to use firebase.
Do someone know what could be going on ?
It's spam, I've been getting those emails on different languages lately. Do not click any links in them!
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 months ago.
Improve this question
Currently google single sign-on gives your real email address to everyone. Instead it could give each party a different identifier for you, such that these third parties wouldn't be able to correlate your data.
Moreover spam could be more easily identified and stopped. Google could manage a fleet of "salted" email addresses for each user, tracking which third parties send spam. Signin/gmail synergy.
My question: Does this exist already? Why does this not already exist? Do any other auth vendors do this?
Followup: Why is my email address even used as my primary id? I'd rather keep it private.
Your email is not used as a primary identifier at least not by Google. When a website such as Airbnb does an open ID connect dance with Google, Google replies with a unique identifier to Airbnb. That identifier does not mean anything to Airbnb as to what your email first name last name are. What also happens is that Airbnb can ask Google for your email and that is how they end up having your email.
Note that Apple have a privacy preserving mechanism where instead of returning your real email address they will return an Apple email address that points to your email. That gives you one level of indirection and more privacy.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 2 years ago.
Improve this question
We're developing a new web app that is installed on-premise on the customer's network. Is there a way to still track their usage and report back to an analytic tool like Mixpanel or Google Analytics?
Is this an air-gapped scenario, where the app has no connectivity to the outside world? If that's not the case, you can still use standard telemetry tools with an on-prem solution. Our on-prem service uses Segment, although customers have the ability to turn it off if they so choose.
You can do it in Google Analytics with Measurement Protocol: https://developers.google.com/analytics/devguides/collection/protocol/v1
The Google Analytics Measurement Protocol allows developers to make HTTP requests to send raw user interaction data directly to Google Analytics servers. This allows developers to measure how users interact with their business from almost any environment.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about programming within the scope defined in the help center.
Closed 4 years ago.
Improve this question
We use Firebase, Google Cloud Storage, Firebase Functions & BigQuery mainly. Our prospective client has asked us to fill out a lengthy security assessment. They will not work with any company that uses Kaspersky products. This is difficult to prove to them using our Google Cloud stack.
It may help to point them to the Google Cloud subprocessors page: https://cloud.google.com/terms/subprocessors - these are companies that provide services to Google Cloud that may be used to process data.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
is it possible to use ldapmodify to set a single users password to never expire?
for example I have a system user that causes the system to fail if the password expires so I need to make it never expire while all the other user password do expire.
so here is what I did created a second password policy and then modified the Manager user to use the new policy rather than the default policy. see http://www.zytrax.com/books/ldap/ch6/ppolicy.html for the details.
Yes. usually. Depends on the system, the OS, etc (usually it's something like putting the pwdMaxAge value to 0 so it never expires . But this if for OpenLDAP itself, it's not necessarilly the same attribute that your target system/OS uses for its own password expiration dates : maybe those are stored elsewhere in ldap for that system/OS...