[Cryptography] Code Spaces has been under DDOS attacks and...

John Ioannidis ji at tla.org
Sat Jun 21 12:11:13 EDT 2014


On Sat, Jun 21, 2014 at 10:10 AM, Perry E. Metzger <perry at piermont.com>
wrote:

...


>
> Requiring two (or more) factor authentication for systems
> administration interfaces and using proper segregation of
> administrative privileges is kind of important if you don't want to
> end up with someone hijacking your sysadmin system.
>

Amazon has been offering 2FA for years. It's codespaces's own fault for not
using it.

Anyway, this is neither a security failure nor a crypto failure. It's just
sheer incompetence in setting up a service, but that's a topic outside the
charter of this list.

/ji
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140621/e35657f4/attachment.html>


More information about the cryptography mailing list