The WiKID Blog, musings on two-factor authentication, information security and some other stuff.
Blast-RADIUS attack
Posted by: root 4 months, 1 week ago
We are currently working on a fix for the Blast-RADIUS attack. It promises to be problematic and may take some time.
The latest WiKID version includes an SBOM
Posted by: root 10 months, 2 weeks ago
As of 6.2 and 5.4, we are including an SBOM in the WiKID RPM. It is located in /opt/WiKID. We have embedded the process in our build system so we can quickly see if any of the libraries we use have any known vulnerabilities. Needless to say, this greatly enhances the security of our product. Even if you never look at the SBOM file, we do!
WiKID 6 is released!
Posted by: root 1 year, 11 months ago
We are pleased to announce the release of Version 6 of the WiKID Strong Authentication server. The new ISO is based on Rocky 9. It offers unparalleled security and scalability. All the supporting packages for WIKID have been upgraded as well.
Log4j CVE-2021-44228
Posted by: root 2 years, 11 months ago
We are fairly confident that we are not vulnerable to the Log4J bug, but we will be releasing an update soon with an updated version of Log4J. Stay tuned.
Questions about 2FA for AD admins
Posted by: root 3 years, 5 months ago
We've recently had more questions about deploying WiKID for two-factor authentication for AD admins to thwart potential privilege escalation in ransomware attacks. We've done a proof-of-concept showing that WiKID can make privilege escalation quite difficult. We realized that we missed a key question about deploying two-factor authentication for admins: how do I know I won't lock out all my admins? That's a damn good question. And here's the answer:
Recent Posts
- Blast-RADIUS attack
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
Archive
2024
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)