Posted on January 2, 2015 by

Configuration in the Environment

Moving Fast published this article, regarding the danger of using the environment to store secrets. I think that every time is a good time to re-evaluate design choices with security implications. So that’s what I’m doing here. My previous postĀ focused specifically onĀ the security implications of storing keys in your code repository. This was a particularly Read More

Posted on September 23, 2011 by

Password Insecurity Quickfix

I just happened upon this brute force calculator and it amazes me how just one word, “Password”, has kept security back soooo many years. Our “passwords” require numbers and symbols and can’t be based on dictionary words and have to be changed and all of this nonsense. It has obviously made people use the same password, Read More