Collaborate Disseminate
Due to an ongoing discussion in my office, I was wondering if anyone had any comments on whether password hashing security needs to be very strong if client certificate validation is also required for account verification.
I’m part of a pretty small video game community and one of our members claims he was DoSed or DDoSed during a recent match. We are currently split as some people believe he was and others believe he wasn’t.
Here are the router logs from t… Continue reading Trying to determine if someone was "DoS’d"
We currently use 5 security questions but Operations team is asking us if we could lower down to 3.
With that,What is the best practice for this one? How many security questions should be asked?
Continue reading How many security questions should be asked? [closed]
We currently use 5 security questions but Operations team is asking us if we could lower down to 3.
With that,What is the best practice for this one? How many security questions should be asked?
Continue reading How many security questions should be asked? [on hold]
When first using Amazon’s “Kindle for PC,” it asks you for a password. Subsequent times using “Kindle for PC,” it doesn’t ask you for your password. Is that password stored on the computer’s hard drive? And if so, will a … Continue reading Is the password for Amazon’s Kindle for PC stored on the computer’s hard drive?
I (along with a billion or so other people) was notified about my Yahoo! account being potentially compromised yesterday. While I’m not worried about that (I have changed my password since then, have a very long and complex … Continue reading How secure is Yahoo Account Key?
I want to make sure that my use of JWT’s in authentication is correct. There are a couple of issues that I don’t understand. This is my current understanding:
When a user logs in, the server will create a JWT the third part of which is a … Continue reading Why are JWT’s secure?
I have inherited an ASP website where sensitive data was passed in the query string as part of the URL. Something like this:
www.example.Com/Test?details=Username&moreDetails=blahblah
If we change this to encrypt the query string, s… Continue reading Prevent a page from appearing in browser’s history