Update: it’s a great game. I’m not even a huge hockey fan, but it sucked me right in.

Tape to tape? Oh that’s new to me… Thanks friend

Yeah I totally agree that the whole ordeal is unnecessarily complex and confusing. The number of websites that have started mandating 2FA despite having complex, unique passwords that have never been shared annoys me regularly. It’s frustrating that because other people can’t figure out how to use a password manager, we can’t have nice things.

My guess is that there is a certain number of account actions you’re allowed to take (changing password, email, etc) before they force you into a cool down period where you can’t delete your account for like a week. Maybe not, but this is one approach I’ve seen before.

As for the video call, I totally see your train of thought. This is gonna sound dumb, but consider that nobody at LI knows you, so a video call is of limited value, especially in this world of ai models that can apply filters to video in real time. I’m not saying this is their rationale, but it could be part of it.

I’m gonna nerd out here for a second but hopefully you’ll humor me. Authentication is tricky, especially if you want more than one factor for 2FA/MFA. The factors are often explained as something you know (password), something you have (perhaps a yubikey, in this case a state issued ID), or something you are (biometrics). The biggest issue as I understand it is that people reuse the same password over and over, so if your LI password were compromised then it isn’t too big of a leap to assume that your email was also compromised, meaning that any form of authentication relying on email cannot be trusted.

If LI has a policy that any account deletion actions attempted within a month of changing the primary email require the account to have at least 2 factors, that would trigger the request for your ID, because they’re assuming that a threat actor is controlling all of the relevant accounts and they are no longer useful for authentication. State issued ID is one of the best ways to authenticate because when your state provides the ID, they are providing a level of guarantee that the information is both true and being provided without modifications (authentic).

Having said all of that, could you not photoshop a state ID and provide that? Some in the comments have suggested that as an option. If I were designing the program then this third party, Persona, would have relationships with issuers of state ids and could do some level of validation that the ID being uploaded is authentic.

I realize none of this solves your problem, but sometimes I feel better about “stupid” policies if I can work backwards and understand how they came to be in the first place and what they’re meant to accomplish. My advice is to wait a week or 3 and try to delete again, but obviously that is still no guarantee. Good luck!

Would you prefer that anyone be able to request that any non-verified account be deleted?

I’d bet their security system saw you log in from a new IP, maybe even over VPN(?), then change the email and add 2fa, which are exactly the steps a malicious actor takes when securing an account acquired using credential stuffing. They presumably expect that your account has been compromised and are treating you as untrusted until you provide some form of validation that you are who you say you are.

I suspect that if you were to seek legal action against them they would claim that you refused to take basic actions to positively prove your identity and throw out some statistics, ie (making this up) 98% of users are able to verify using their system without any issues.

If you do seek to bring them to court under article 77, would you not then be putting into the public record a permanent association between your real identity and the account you seek to delete? Is that better than simply sending them a picture of your ID? With this in mind, is it worth the cost of legal representation to resolve the issue? I’m not sure where you’re from and you don’t need to answer me but I would encourage you to consider those questions when determining your path forward.

Bow down before my great powers to link to a change log, you imbecile. Now that this error has been revealed to you, certainly you will be less of a useless piece of shit. Enjoy your newfound knowledge and prosper!

Are you being intentionally dense? It has gotten multiple updates every day for the last week?

Omg same. There are literally dozens of us.

The more I hear about regulations in Australia, the more certain I am that their leaders lack the ability to distinguish nuance in any capacity.

Otoh, maybe it’s the rest of us who are out of touch and need to do more to protect the children.

Yeah Susan, I’m sure Microsoft TOTALLY learned their lesson from the Crowdstrike incident. Y’know, since they’ve never had an anti-malware company cause worldwide outages because of a configuration error before.

Nintendo does have sales from time to time, they’re just rarely great discounts. If you have a switch and you wishlist games they will email you if your wishlisted game goes on sale.

I prefer to digest text too, but still would choose to taste a meal than read a typed up printout of the flavors it contains.

If I showed up at a restaurant and was presented with a menu that didn’t describe anything about the dishes on offer, I’d be pretty disappointed.

Point being that we have limited time and a nearly limitless amount of options for how to spend it. Text summaries are a tool we can use to decide whether something is worth our time (and money) investment if we’re on the fence about it.

Thank you for distilling that down, cleared up all of the confusion I had. Cheers.

Oh, I was just interested in making a pun based on the name. 😂

To be perfectly honest I was under the impression that we had collectively bailed on PGP in favor of GPG, but based on the Wikipedia article it seems like PGP is still getting updates so maybe that’s not the case?

Well it’s not very good, it’s just pretty good.

Good seems pretty subjective tbh but if you’re interested in “research”, f95zone is probably your best resource.

Thank you. I’m going to restate your explanation to be sure I’ve got it:

• authorities want platforms to comply with legal requests
• when Signal gets a subpoena, they open the key locker and show that it’s empty. They provide the metadata they can (sign up date and last seen date, full stop) and tell authorities they can’t do better.
• when Telegram gets a subpoena, they open the key locker and show all the keys, then slam it shut in the face of the investigator, telling them to get bent.
• conclusion: it’s easier to never have the keys in the first place than to tease the government with them

I’m no authority on it but from what I’ve read it seems to have more to do with the social features of telegram where lots of content is being shared, both legal and illegal. Signal doesn’t have channels that support hundreds of thousands of people at once, nor media hosting to match.

Um actually, in the US

ACKTUALLY, whether or not you can get fired is a state issue, and some states such as California provide statutory protection for employees who use cannabis. It’s true that there are some states where you can get in trouble, but the federal laws are not being enforced by the Biden administration, who has given the green light on cannabis consumption and rescheduling, so there’s really no single answer that applies to the whole United States, and your mileage may vary.

People forget a lot of things like this, thanks for the reminder.

Ah, well I’m sure it will still be here if/when you escape from Elden Ring. Have fun!