Some of these features sound like anti-security and definitely anti-privacy features. Will definitely make you think twice about having a “private” meeting on Zoom if they’re going to embed my email on a screenshot someone else takes. Great way to get a meeting organizers email...
> Screen Share Watermark Superimposes the image of a meeting participant’s email address onto shared content in the event a participant takes a screenshot.
Definitely not on Linux. Global hotkeys are managed by the compositor and can't be spied on by applications. There's also no API no read keystrokes from external apps. This is actually a security feature.
AFAIK, on iOS, the app is actually sent an event by the OS when a screenshot is captured.
Probably because they seemed to have misinterpreted the text they quoted in their own comment. The participant who takes the screenshot has their own email embedded in their screenshot, not someone else's.
Your random SaaS company is often a big shitshow. I've had more than one vendor Sales Engineer show me live customer data in response to performance or other questions. Startups and smaller SaaS companies in particular often demonstrate amazing levels of cluelessness.
We had an e-com SaaS company give us "sample product data" to help one our customers who was onboarding to their platform and was trying to figure out how to set up their product records and taxonomies, and the data turned out to be poorly anonymized real production data from one of our client's competitors who was also on the same SaaS platform.
Is this because of habit or is there a particular attack scenario that you're trying to mitigate?
If you're using a local password manager app such as KeePassXC, the password is almost a moot point as an attacker would need access to the password vault file. If they have this level of access to your system already, they could easily keylog your password or just dump the unlocked vault from memory. Changing the password also wouldn't really help as a previous version of the vault file could still be unlocked with the old password.
If you're using a cloud-based password manager such as 1Password, you're better sticking with a long, secure master password, rather than trying to remember a new one each month. As long as the password is unique and your local system is trusted, other security controls such as 2FA and account lockout should mitigate any concerns.
There are a few edge-case scenarios where changing your master password monthly may help:
* You reuse the password on other services (which you probably aren't as that's exactly what the password manager is for)
* You log on to your password manager using shared/untrusted devices
* Your local system was compromised sometime during the month, but then somehow isn't any more
I only have limited resources to test the library. I managed to get it working in Safari on MacOS (though not perfectly - tabbing through the links in the kitchen canvas moves the canvas out of view).
All bug reports of the site not working on various devices are very welcome!
If it is IntersectionObserver causing the problem (as reported in the other comment) - that's sad. I'm using IO on the landing page to switch off the animations when they're not in view; the last thing I want the library to do is drain people's batteries.
I have been looking for something like this that keeps me out of apps while I am in code mode!