Tag: access token

  • Hacker News: Refresh vs. Long-lived Access Tokens (2023)

    Source URL: https://grayduck.mn/2023/04/17/refresh-vs-long-lived-access-tokens/ Source: Hacker News Title: Refresh vs. Long-lived Access Tokens (2023) Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses the differences between long-lived access tokens and a combination of long-lived refresh tokens with short-lived access tokens, particularly in the context of OAuth 2.0. It highlights the security benefits of…

  • The Cloudflare Blog: What’s new in Cloudflare: Account Owned Tokens and Zaraz Automated Actions

    Source URL: https://blog.cloudflare.com/account-owned-tokens-automated-actions-zaraz Source: The Cloudflare Blog Title: What’s new in Cloudflare: Account Owned Tokens and Zaraz Automated Actions Feedly Summary: Cloudflare customers can now create Account Owned Tokens , allowing more flexibility around access control for their Cloudflare services. Additionally, Zaraz Automation Actions streamlines event tracking and third-party tool integration. AI Summary and Description:…

  • Docker: Docker Desktop 4.35: Organization Access Tokens, Docker Home, Volumes Export, and Terminal in Docker Desktop

    Source URL: https://www.docker.com/blog/docker-desktop-4-35/ Source: Docker Title: Docker Desktop 4.35: Organization Access Tokens, Docker Home, Volumes Export, and Terminal in Docker Desktop Feedly Summary: Docker Desktop 4.35 includes organization access tokens, a new Docker product home page, terminal enhancements, Docker Desktop for Red Hat Enterprise Linux, and the performance boost from Docker VMM for Apple Silicon…

  • Hacker News: Auth Wiki

    Source URL: https://auth.wiki/ Source: Hacker News Title: Auth Wiki Feedly Summary: Comments AI Summary and Description: Yes Summary: The provided text comprehensively discusses various access control mechanisms, emphasizing their importance in security practices and the management of identities and permissions. These topics are highly relevant for professionals in security, particularly concerning identity and access management…

  • The Register: Internet Archive exposed again – this time through Zendesk

    Source URL: https://www.theregister.com/2024/10/21/internet_archive_zendesk_access_attack/ Source: The Register Title: Internet Archive exposed again – this time through Zendesk Feedly Summary: Org turns its woes into a fundraising opportunity Despite the Internet Archive’s assurances it’s back on its feet after a recent infosec incident, the org still appears to be in trouble after parties unknown claimed to hold…

  • Slashdot: Internet Archive Users Start Receiving Email From ‘Some Random Guy’ Criticizing Unpatched Hole

    Source URL: https://it.slashdot.org/story/24/10/20/1733227/internet-archive-users-start-receiving-email-from-some-random-guy-criticizing-unpatched-hole?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Internet Archive Users Start Receiving Email From ‘Some Random Guy’ Criticizing Unpatched Hole Feedly Summary: AI Summary and Description: Yes Summary: The text reports on a significant data breach at the Internet Archive, detailing the potential for user data exposure due to inadequate security measures and the exploitation of…

  • Hacker News: Internet Archive breached again through stolen access tokens

    Source URL: https://www.bleepingcomputer.com/news/security/internet-archive-breached-again-through-stolen-access-tokens/ Source: Hacker News Title: Internet Archive breached again through stolen access tokens Feedly Summary: Comments AI Summary and Description: Yes Summary: The Internet Archive suffered a significant data breach resulting from poor security practices, specifically the failure to rotate stolen GitLab authentication tokens. This breach has exposed sensitive data, including access to…

  • Docker: Introducing Organization Access Tokens

    Source URL: https://www.docker.com/blog/introducing-organization-access-tokens/ Source: Docker Title: Introducing Organization Access Tokens Feedly Summary: Docker organization access tokens let customers manage access that each token has, instead of managing users and their placement within the organization. AI Summary and Description: Yes Summary: The introduction of organization access tokens enhances secure access management for organizations, addressing risks associated…

  • CSA: What is Session Hijacking? A Technical Overview

    Source URL: https://cloudsecurityalliance.org/articles/what-is-session-hijacking-a-technical-overview Source: CSA Title: What is Session Hijacking? A Technical Overview Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the critical role of session management in web applications and SaaS platforms, highlighting the risks of session hijacking and offering best practices for mitigating such security threats. The insights provided are…