Simon Willison’s Weblog

Subscribe

Entries tagged github, security

Filters: Type: entry × github × security × Sorted by date


Single sign-on against GitHub using ASGI middleware

I released Datasette 0.29 last weekend, the first version of Datasette to be built on top of ASGI (discussed previously in Porting Datasette to ASGI, and Turtles all the way down).

[... 1612 words]

1:18 am / 14th July 2019 / github, middleware, projects, security, datasette, asgi

How could GitHub improve the password security of its users?

By doing exactly what they’re doing already: adding more sophisticated rate limiting, and preventing users from using common weak passwords.

[... 80 words]

5:50 pm / 20th November 2013 / github, passwords, ratelimiting, security, quora, open-source

Rate limiting with memcached

On Monday, several high profile “celebrity” Twitter accounts started spouting nonsense, the victims of stolen passwords. Wired has the full story—someone ran a dictionary attack against a Twitter staff member, discovered their password and used Twitter’s admin tools to reset the passwords on the accounts they wanted to steal.

[... 910 words]

10:27 pm / 7th January 2009 / counters, django, github, memcached, projects, python, ratelimitcache, ratelimiting, security, twitter

Types

Years

Tags