🦞🌯 Lobster Roll

Thread

The “email is authentication” pattern (rubenerd.com)
L 21 pts 15 comments by acatton Sep 10, 2024 emailsecurity thread

Stories related to "The “email is authentication” pattern" across the full archive.

Email authentication: SPF, DKIM and DMARC out in the wild (blog.jonlu.ca)
L 24 pts 8 comments by JonLuca Dec 2, 2019 emailsecurity Security / PrivacyInternet / Digital Culture thread
The “email is authentication” pattern (rubenerd.com)
L 21 pts 15 comments by acatton Sep 10, 2024 emailsecurity Security / PrivacyInternet / Digital Culture thread
Improved Authentication for Email Encryption and Security (2016) (protonmail.com)
L 2 pts 0 comments by Couto May 30, 2018 cryptographysecurity Security / Privacy thread
Revisiting Email Spoofing (alex.kaskaso.li)
L 3 pts 0 comments by calvin Oct 9, 2019 emailsecurity Security / PrivacyInternet / Digital Culture thread
Critical OpenSMTPd bug opens email servers to hackers (thehackernews.com)
L -1 pts 10 comments by discovery Jan 31, 2020 emailopenbsdsecurity Systems / Low-Level / OSSecurity / PrivacyInternet / Digital Culture thread
Stop Using Encrypted Email (latacora.micro.blog)
L 63 pts 73 comments by GeoffWozniak Feb 19, 2020 emailrantsecurity Security / PrivacyInternet / Digital Culture thread
Email service provider recommendations (drewdevault.com)
L 7 pts 0 comments by freddym Jun 19, 2020 emailprivacysecurity Security / PrivacyInternet / Digital Culture thread
DIME, Formerly DarkMail, Promises Secure Email (2014) (tomsguide.com)
L 4 pts 2 comments by ethoh Jul 6, 2020 emailprivacysecurity Security / PrivacyInternet / Digital Culture thread
Google Meddling With URLs In Emails, Causing Security Concerns (hackaday.com)
L 3 pts 6 comments by craftyguy Oct 21, 2020 emailsecurity Security / PrivacyInternet / Digital Culture thread
Protect domains that don’t send email (gov.uk)
L 61 pts 9 comments by inactive-user Nov 25, 2020 emailsecurity Security / PrivacyInternet / Digital Culture thread
Yes, We Want Cryptographic Protection for Email (sequoia-pgp.org)
L 23 pts 21 comments by dvn Jun 29, 2021 cryptographyemailprivacysecurity Security / PrivacyInternet / Digital Culture thread
Treating Email More Like a Password Manager (dmitryfrank.com)
L 22 pts 4 comments by dimonomid Dec 19, 2022 emailsecurity Security / PrivacyInternet / Digital Culture thread
The "email is authentication" pattern (rubenerd.com)
HN 337 pts 452 comments by Brajeshwar Sep 7, 2024 Security / Privacy thread
How do you manage Personal Email, Registar and Host Accounts to Prevent Lock Out?
L 26 pts 16 comments by veqq Dec 1, 2024 emailprivacysecurity Security / PrivacyInternet / Digital Culture thread
I once lost access to a 15 year old google account and have also been geolocked out while traveling. Although the recovery emails didn't help then, I still broadened my footprint and especially maintained emails on hosted domains. I see holes in this too, however. Is there anything foolproof? I (...
How to fix email encryption (weddige.eu)
L 15 pts 7 comments by runxiyu May 29, 2025 emailsecurity Security / PrivacyInternet / Digital Culture thread
Fun with Gzip Bombs and Email Clients (grepular.com)
L 9 pts 1 comments by eduard Jul 23, 2025 emailsecurity Security / PrivacyInternet / Digital Culture thread
Everything You Need to Know About Email Encryption in 2026 (soatok.blog)
L 79 pts 52 comments by fanf Jan 5, 2026 emailsecurity Security / PrivacyInternet / Digital Culture thread
Two-factor authentication with ssh (blog.authy.com)
L 5 pts 3 comments by inactive-user Aug 30, 2012 security Security / Privacy thread
Two Factor SSH Authentication (sethvargo.com)
L 2 pts 0 comments by fromonesrc Jan 8, 2013 security Security / Privacy thread
Bypassing Google’s Two-Factor Authentication (blog.duosecurity.com)
L 7 pts 2 comments by jcs Feb 25, 2013 security Security / Privacy thread
Sudo authentication bypass when clock is reset (sudo.ws)
L 11 pts 0 comments by kusuriya Mar 3, 2013 security Security / Privacy thread
Ask Lobsters: What is the general consensus on the best API authentication these days?
L 5 pts 4 comments by jcs Apr 3, 2013 apisecurity Programming (General)Security / Privacy thread
I liked Flickr's now-deprecated [hash-the-params](http://www.flickr.com/services/api/auth.howto.web.html) authentication because it was simple (though [flawed](http://vnhacker.blogspot.com/2009/09/flickrs-api-signature-forgery.html), it is fixable). Now it seems like most sites are using OAuth 1....
Use Google Authenticator For Two-Factor SSH Authentication in Linux (scottlinux.com)
L 2 pts 0 comments by inactive-user Jun 3, 2013 linuxsecurity Systems / Low-Level / OSSecurity / Privacy thread
Using Yubikey For SSH Multi-Factor Authentication (undeadly.org)
L 5 pts 0 comments by inactive-user Jun 16, 2013 openbsdsecurity Systems / Low-Level / OSSecurity / Privacy thread
Web Security Relies on SSL Which Relies on Email Which is Broken (blog.whitehatsec.com)
L 2 pts 0 comments by inactive-user Aug 12, 2013 security Security / Privacy thread
Tesla Model S REST API Authentication Flaws (programming.oreilly.com)
L 4 pts 0 comments by journeysquid Aug 27, 2013 apisecurity Programming (General)Security / Privacy thread
Signing email with an NFC smart card on Android (nelenkov.blogspot.com)
L 3 pts 0 comments by jcs Oct 28, 2013 androidsecurity Security / Privacy thread
Scramble: secure email for everyone (dcposch.github.io)
L 3 pts 1 comments by rz Nov 5, 2013 javascriptsecurityshow Web DevelopmentProgramming (General)Security / Privacy thread
A portscan by email – HTTP over X.509 revisited (blog.nruns.com)
L 3 pts 0 comments by zod000 Nov 13, 2013 security Security / Privacy thread
Beyond SSL client cert authentication: authorization (spootnik.org)
L 4 pts 0 comments by pyr Jan 25, 2014 securityweb Web DevelopmentSecurity / Privacy thread