Skip to main content

The WiKID Blog

The WiKID Blog, musings on two-factor authentication, information security and some other stuff.

Securing Google Apps for Your Domain

I think there are two markets for Google Apps for your domain.  One is in education where you want to get the management of student accounts off your shoulders.  The other is real companies that like the web, use the web and want to cloud-source their infrastructure.  Twitter is clearly one of the latter and they recently realized the risks they were taking in doing so

A cautionary tale

Recently,  A Small Orange, a web-hosting company was attacked and their server taken down.  I hadn't heard of them, despite the fact that they are based in Atlanta.  Here are the details of the attack:  http://forums.asmallorange.com/index.php?showtopic=12908.

Virtualization and Two-factor Authentication

There's been lots of discussion about cloud risks recently and how to improve cloud security. I want to point out that two-factor authentication will be a key piece of securing the cloud. From improving the security of the tunnel:  

5 Ways to Improve Your Defenses Against Attack

This article at CIO Magazines lists 5 ways to improve your defences, including:

The lessons from Guy Kawaski's twitter attack

The lessons are sadly the same.  Static passwords are weak and DNS is weak.  The answer is two-factor authentication and either mutual https authentication or better DNS.  Since DNS is unlikely to be fixed any time soon...

Recent Posts

Archive

2024
2022
2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom