Nougat

Bad actors can afford $50 the same as good ones.

The difference between $0 and $50 isn’t really relevant.

LetsEncrypt is legit. A downside is that the certs expire after 90 days. However, that also carries an upside in that it limits the damage in case a certificate is compromised. There are procedures by which you can automatically renew/request (I forget whether they allow renewing an existing cert or require a brand new one) LE certs and apply them to your application, but that can be fiddly to configure.

If you’re not comfortable with configuring automatic certificate cycling, a long-term paid cert would be more appropriate.

While “Cisco Duo” is not listed here:

The following is a list of Cisco’s trademarks and registered trademarks in the United States and certain other countries. Please note, however, that this listing is not all-inclusive and the absence of any mark from this list does not mean that it is not a Cisco trademark.

Trademarks are exactly how rules for naming things works.

Expect this name to change when Cisco comes at them for being too close to Cisco Duo.

To address the “why”:

A user account, as defined by a username/password combination, can be used to access resources on the machine without logging in interactively on that machine. In a perfect world, you would only ever log in interactively on the machine using an account with restricted permissions, and when you needed to do “administraty” things, you would provide separate admin credentials at that time (sudo, runas, whatever your OS of choice supports).

Bonus question - what are the risks of having a weak password on a root user on a spare laptop on the same network as my main device that is used exclusively for web browsing?

If someone is able to compromise that root user on Machine A, then they may be able to leverage Machine A as a platform to attack any other devices on your network, or make Machine A into a zombie in their bot army to attack other targets anywhere, send spam, whatever malicious shenanigans they desire. (I know that’s pretty simplistic, there’s a whole lot of details left out, but that’s the gist of it.)

Also, nobody has yet mentioned the PIN option. I know that Windows machines (at least some of them, depending on configuration) allow you to configure a PIN for logon for local accounts. This PIN is only stored locally on the machine, and is not transmitted anywhere else. It’s basically a “shortcut” to the full password, and I think it can only be used for interactive logon.

Nat 20 let’s go

I feel it in my fingers, I feel it in my toes.

Try different toothpastes. The very popular ones (Crest, Colgate) I find treacly sweet and disgusting, and I fucking hate mint anything. Arm and Hammer is my go to for that bland goodness. YMMV.

You must have watched some other video than I watched then. He blathers about (paraphrasing) “if you link to any firearm accessory, even a holster, they will delete the video and your channel.” That’s just not true.

Maybe OP did that, but that’s exactly what Rossman is saying in the video.

Maybe he’s saying that those people have an unusually short distance between their armpits and their hips?

YouTube Firearms Policy

Rossman apparently doesn’t know how to read.

Do people avoid Chromebooks for the same reason?

Sounds like these are the kinds of incidents that police should take care of. But the odds are probably better that you’d end up with two problems.

Libraries also make a ton of copies and give them out for free.

This is just wrong.

If a library has purchased two copies of a piece of digital media - an ebook, for example - which patrons can check out online, only two people can have it checked out at once, and when the checkout period expires, the content is no longer available to the patron. Now a copy is freed up for the next person to check out.

If you are accepting payments, you absolutely want to offload that to a third party payment processor, so that you don’t have to go through the hassle of doing PCI compliance.

Of course, but people still want to put ink and toner into them.

I wonder how this will affect HP printers.