Fred Stluka on 15 Apr 2012 14:50:59 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Server credential storage best practices


Paul,

Can't always count on every client being able to decrypt things,
especially when you are bootstrapping a development environment
for a new client, so I typically send username (and explanatory text)
via e-mail and send the password via text message to their phone.

Sort of a poor man's multi-factor authentication.

--Fred
------------------------------------------------------------------------
Fred Stluka -- mailto:fred@bristle.com -- http://bristle.com/~fred/
Bristle Software, Inc -- http://bristle.com -- Glad to be of service!
Open Source: Without walls and fences, we need no Windows or Gates.
------------------------------------------------------------------------

On 4/15/12 5:34 PM, Paul Walker wrote:
I work remotely for long and short term clients and find myself storing a lot of account credentials (server, website, and other more sensitive account information) on an osx laptop. I'm curious what strategies and practices people employ for protecting this sort of sensitive data. Is it paranoid to worry about transferring account credentials via Gmail? SMS? Storing with google docs?

Any thoughts appreciated!

Paul



___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug