S is for Security

Google‘s gMail security is so amazing. I’ve gotten warnings before but today’s was like, wow.
See a similar previous episode: gMail Security Roxor My Soxor
I’m working on my app and testing an email function for which I was using a temporary gMail account. I uploaded the file to (what was until a few minutes ago) a public GitHub repo with the address/username and password fully visible.
In less than a couple minutes, the red band across the top of my gMail page appeared, telling me somebody in the Phillipines had my password and just tried to get into my account! Immediately, I …
  • Changed the password to that gMail account
  • Turned off “Allow less secure apps” (I had it on while troubleshooting)
  • Added my cell phone number to that gMail account for recovery purposes
  • Upgraded to a paid* GitHub account and made that repo private
  • Changed the database user’s password for that app
  • Setup two-factor authentication for my host’s control panel

*Yeah, security is worth the investment. A point made by the caption, “Think security is expensive? Try [getting hacked].” Click comic below for the source of that quote and the comic.

commitStrip-english650-final

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s