Skip to content
By using Twitter’s services you agree to our Cookies Use. We and our partners operate globally and use cookies, including for analytics, personalisation, and ads.
  • Home Home Home, current page.
  • About

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @
  • Language: English
    • Bahasa Indonesia
    • Bahasa Melayu
    • Català
    • Čeština
    • Dansk
    • Deutsch
    • English UK
    • Español
    • Filipino
    • Français
    • Hrvatski
    • Italiano
    • Magyar
    • Nederlands
    • Norsk
    • Polski
    • Português
    • Română
    • Slovenčina
    • Suomi
    • Svenska
    • Tiếng Việt
    • Türkçe
    • Ελληνικά
    • Български език
    • Русский
    • Српски
    • Українська мова
    • עִבְרִית
    • العربية
    • فارسی
    • मराठी
    • हिन्दी
    • বাংলা
    • ગુજરાતી
    • தமிழ்
    • ಕನ್ನಡ
    • ภาษาไทย
    • 한국어
    • 日本語
    • 简体中文
    • 繁體中文
  • Have an account? Log in
    Have an account?
    · Forgot password?

    New to Twitter?
    Sign up
ericlaw's profile
Eric Lawrence 🎻
Eric Lawrence 🎻
Eric Lawrence  🎻
@ericlaw

Tweets

Eric Lawrence  🎻

@ericlaw

Impatient optimist. Dad. Author and speaker. Created Fiddler & SlickRun. PM @ MSFT '01-'12, and '18- on @microsoftedge. My words are my own. he/him

Texas, USA
textslashplain.com
Joined May 2007

Tweets

  • © 2018 Twitter
  • About
  • Help Center
  • Terms
  • Privacy policy
  • Cookies
  • Ads info
Dismiss
Previous
Next

Go to a person's profile

Saved searches

  • Remove
  • In this conversation
    Verified accountProtected Tweets @
Suggested users
  • Verified accountProtected Tweets @
  • Verified accountProtected Tweets @

Promote this Tweet

Block

  • Tweet with a location

    You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more

    Your lists

    Create a new list


    Under 100 characters, optional

    Privacy

    Copy link to Tweet

    Embed this Tweet

    Embed this Video

    Add this Tweet to your website by copying the code below. Learn more

    Add this video to your website by copying the code below. Learn more

    Hmm, there was a problem reaching the server.

    By embedding Twitter content in your website or app, you are agreeing to the Twitter Developer Agreement and Developer Policy.

    Preview

    Why you're seeing this ad

    Log in to Twitter

    · Forgot password?
    Don't have an account? Sign up »

    Sign up for Twitter

    Not on Twitter? Sign up, tune into the things you care about, and get updates as they happen.

    Sign up
    Have an account? Log in »

    Two-way (sending and receiving) short codes:

    Country Code For customers of
    United States 40404 (any)
    Canada 21212 (any)
    United Kingdom 86444 Vodafone, Orange, 3, O2
    Brazil 40404 Nextel, TIM
    Haiti 40404 Digicel, Voila
    Ireland 51210 Vodafone, O2
    India 53000 Bharti Airtel, Videocon, Reliance
    Indonesia 89887 AXIS, 3, Telkomsel, Indosat, XL Axiata
    Italy 4880804 Wind
    3424486444 Vodafone
    » See SMS short codes for other countries

    Confirmation

     

    Welcome home!

    This timeline is where you’ll spend most of your time, getting instant updates about what matters to you.

    Tweets not working for you?

    Hover over the profile pic and click the Following button to unfollow any account.

    Say a lot with a little

    When you see a Tweet you love, tap the heart — it lets the person who wrote it know you shared the love.

    Spread the word

    The fastest way to share someone else’s Tweet with your followers is with a Retweet. Tap the icon to send it instantly.

    Join the conversation

    Add your thoughts about any Tweet with a Reply. Find a topic you’re passionate about, and jump right in.

    Learn the latest

    Get instant insight into what people are talking about now.

    Get more of what you love

    Follow more accounts to get instant updates about topics you care about.

    Find what's happening

    See the latest conversations about any topic instantly.

    Never miss a Moment

    Catch up instantly on the best stories happening as they unfold.

    1. Joona Somerkivi‏ @JSomerstone Sep 24
      Replying to @ericlaw @adambroach and

      Well, @BankSA is stating that they do not have agreement with @LastPass - which they do not even need. The writer lacks the knowledge how pwmanagers work. Hopefully he/she does now 😁

      1 reply 0 retweets 1 like
    2. outsh1ned‏ @outsh1ned Sep 24
      Replying to @JSomerstone @ericlaw and

      So in summary: 1. The bank doesn't need to be doing anything to support 3p password managers 2. That would be up to LastPass to fix for their users 3. The BankSA statement they aren't support for LastPass is a pretty reasonable response 4. There's no need for a shaming thread

      1 reply 0 retweets 0 likes
    3. Ben Aveling‏ @BenAveling Sep 25
      Replying to @outsh1ned @JSomerstone and

      1. More like they need to stop doing stupid shit to break password managers. 2. Wrong. 3. Wrong. 4. Wrong.

      2 replies 0 retweets 0 likes
    4. outsh1ned‏ @outsh1ned Sep 25
      Replying to @BenAveling @JSomerstone and

      There's no stupid shit here that compares to thinking banks, on the surface of this entire planet, need to code their websites in a way that is compatible with the products of one company from Budapest.

      1 reply 0 retweets 0 likes
    5. Adam Roach‏ @adambroach Sep 25
      Replying to @outsh1ned @BenAveling and

      To be clear, this code is specifically designed to foul up Firefox's, Chrome's, Safari's, and Edge's password management functions, as well as every add-on password manager. You're really off in the weeds here.

      1 reply 0 retweets 0 likes
    6. outsh1ned‏ @outsh1ned Sep 25
      Replying to @adambroach @BenAveling and

      How would you differentiate a website specifically targeting products as opposed to not giving a shit about them? Are you clairvoyant?

      1 reply 0 retweets 0 likes
    7. Adam Roach‏ @adambroach Sep 25
      Replying to @outsh1ned @BenAveling and

      Adam Roach Retweeted Adam Roach

      You've clearly missed the part of this thread where I went into the code that causes this to happen:https://twitter.com/adambroach/status/1044313350925094912 …

      Adam Roach added,

      Adam Roach @adambroach
      Replying to @ericlaw @JSomerstone and 2 others
      Let's be clear -- @banksa is taking bizarre and intentional steps to prevent the use of strong passwords. In addition to an indefensible 12-character limit, this code serves the sole purpose of thwarting password managers: https://ibanking.banksa.com.au/InternetBankingResources/ibank2/javascript/screen/logonCrypto/logonCrypto.js …
      1 reply 0 retweets 0 likes
    8. outsh1ned‏ @outsh1ned Sep 25
      Replying to @adambroach @BenAveling and

      That's simply a repetition of the statement you've made here. Meanwhile, what exactly is the case we're making for why this bank can't make its own decisions about this? Is you reading on fraud cases up to date? Know the lo$$ off hand for stored browser passwords on shared PCs?

      3 replies 0 retweets 0 likes
    9. outsh1ned‏ @outsh1ned Sep 25
      Replying to @outsh1ned @adambroach and

      You do of course understand it's not one cunty guy in web development, it's clearly come out of a policy decision. So what is the argument for why banks need to support capture of banking passwords directly from their website by untrusted vendors if that's contrary to policy?

      2 replies 0 retweets 0 likes
    10. Joona Somerkivi‏ @JSomerstone Sep 25
      Replying to @outsh1ned @adambroach and

      Agreed, banks have no obligation to support PW managers. But I fail to understand the business (or security) reason to block them. And pw managers do not capture the credentials from a site, they inject them so that users do not have to type nor remember them

      1 reply 0 retweets 0 likes
      Eric Lawrence  🎻‏ @ericlaw Sep 25
      Replying to @JSomerstone

      There are different types of password managers. Most will indeed capture credentials.

      7:09 AM - 25 Sep 2018
      2 replies 0 retweets 0 likes
        1. Ben Aveling‏ @BenAveling Sep 25
          Replying to @ericlaw @JSomerstone

          password managers should try to capture passwords. But they shouldn’t prefer that method. Their preference should be to generate and inject

          0 replies 0 retweets 0 likes
          Thanks. Twitter will use this to make your timeline better. Undo
          Undo
        1. Joona Somerkivi‏ @JSomerstone Sep 25
          Replying to @ericlaw

          I stand corrected. I do not use one that is integrated to a browser, so I never use such features. Thank you.

          0 replies 0 retweets 0 likes
          Thanks. Twitter will use this to make your timeline better. Undo
          Undo

      Loading seems to be taking a while.

      Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

        Promoted Tweet

        false

        • © 2018 Twitter
        • About
        • Help Center
        • Terms
        • Privacy policy
        • Cookies
        • Ads info