Collaborate Disseminate
I have a Windows service that accesses a database connection. Since users rarely use Windows authentication, I encrypt the connection string. For development I have the password hard-coded, but I know this is a very bad idea. What is the p… Continue reading How should I store a password used by a service written in .NET
I have an alert for monitoring windows server logon success (event ID 4624) and already whitelisting all the authorized users in the alert rule but after a while, there is some alert showed up using domain NT AUTHORITY with account names l… Continue reading Are NT Authority account users is safe?
I’m considering how to deploy a service that needs SSH access to many important boxes in my infrastructure. Rather than store a long-lived SSH private key in a key store that the service could request, I’m considering using short-lived SSH… Continue reading Are SSH certificates more secure for service accounts?
I have a question about accessing buckets on AWS S3. Let’s suppose we have a bucket that has to have public read access by everyone and only my API has to be able to PUT and DELETE items from bucket. To
restrict the access, take a look at… Continue reading Amazon S3 policies: CORS or Service Accounts?
A survey of nearly 300 Black Hat conference attendees this year showed strong agreement that service accounts are an attractive target. Continue reading Three Service Account Secrets Straight from Hackers and Security Pros
For an organisation I work with, the policy for internally developed applications has been to use AD accounts for running services or service integrations (their AD is full of SA_AppName_purpose). Main reasons being visibilit… Continue reading Server to server- local account or IdP?
How to make imported public key available after logging off?
I have a Powershell process that encrypts the file (recipient was masked):
Start-Process “gpg.exe” -ArgumentList “–batch –yes –always-trust –recipient 3******D… Continue reading gpg won’t find public key if not in interactive session
I am getting a presentation together for a topic I am not SUPER knowledgeable in.
I am an admin within a nameless system, and of the opinion that a service account should be created for each individual integration(rather t… Continue reading Service Account Best Practices
Another day I commented on wordpress blog and I could subscribe me for get new comments and answers from author and other users. Well, I receive, on my personal email, a message from wordpress to a Subscription Managementpage… Continue reading What about privacy data on Subscribe WordPress and How to unsubscribe?
My company is looking to install a 3rd party application on our infrastructure and this application will be installed on an IIS Server with a connection to a SQL server. They require an AD service account with the following p… Continue reading IIS Application – service account permissions