June 2022 Archive
DMARC: Moving to a Monitor-As-Necessary State
- June 27, 2022
- 3 minutes
- inspiration, security, tech
After a year-and-a-half of implementation (mostly monitoring), it is time to switch to a 'steady' or 'monitor-as-necessary state' for all of my things DMARC. I've written about this journey before, with the last major summary in November, 2021.
Read MoreUpgrading an Old Application to 21st Century Passwords
- June 13, 2022
- 7 minutes
- automation, inspiration, mistakes, php, security, tech
I have a confession to make: I've ignored a Really Bad Password Form on an inherited web application for about at least a decade too long.
I'm not proud, but every time I considered changing the password mechanism to something more modern (and more secure), decision paralysis would set in...in great part due to the design challenges I anticipated in quietly upgrading this for users of the app in question.
Read More





