security posts

Securing administrative access with MFA

10 minutes to read
Monday, 4th of March 2019

Now that multi factor authentication is gaining ground I thought I would write a simple guide on how to secure administrative access with MFA on Linux systems. The solution is simple and based on Google Authenticator. The good thing with Google Authenticator is that it's a typical TOTP/HOTP solution and as such does not require any internet connectivity on either the server or the client. The configuration examples provided are more or less appropriate for openSUSE Leap 15 and Ubuntu 18.04 LTS

To cyber-insure or not?

4 minutes to read
Tuesday, 4th of December 2018

Professional liability insurance has been around for long. It is not a surprise that Cyber Insurance is becoming a trend lately, considering the constantly raising number of security breaches. The post in one sentence: Cyber insurance is a good thing but be careful what you wish for.

When multi-factor will not save you

11 minutes to read
Sunday, 19th of August 2018

There is a lot of discussion lately about multi-factor authentication and how this will upgrade everyone's security. Indeed, it is an improvement and it was about time we start becoming more conscious about the security issues related to authentication. As usually though, these discussions generated a lot of confusing and "why it didn't work" moments when we see cases such as Reddit's hack in August of 2018.

Passwords again - now on companies

9 minutes to read
Wednesday, 25th of October 2017

More than a year ago I wrote an article about how you should stop remembering passwords. A few smart people figured out that was I was suggesting, was equivalent to using a password manager. Without the hassle of using one and without the risk of your password manager being compromised. Smart, right?

The problem with compromised software

2 minutes to read
Thursday, 21st of September 2017

As everybody probably knows by now, CCleaner was compromised and malicious individuals added multi-stage malware payload on it. A typical case of compromised software if you ask me, pretty much like the one with the Ukrainian tax software that spread Not-Petya. But there is a different aspect to why compromised software is very dangerous, and it actually uses (believe it or not) social engineering in a more advanced way.

Biometrics vs Passwords

3 minutes to read
Tuesday, 22nd of August 2017

Biometrics is supposed to be the ultimate solution for access control. It is also supposed to be the best replacement for passwords, not only from the security perspective, but also from the user-friendliness perspective. People don't have to cope with the strange (and inefficient) password rules that security used to push down their throats. So all is wonderful, and we should all be using biometrics now, right?

What do you think this is?

Recent Posts