When you set up authoritative DNS servers for domains, do you try to have NSes in the same TLD zone to take advantage of Glue recors in the zone (e.g.: .net domain would use name servers under .net too), or intentionally use NSes in separate TLD zones (like major cloud vendors do) ignoring Glue records, but using separate TLDs (.com, .info, ccTLD, etc.) for supposed redundancy in case one TLD registry goes offline?

Or you do not care at all?

I improved my earlier prototype on MCP server auth with Entra ID - it now can use "session tokens" instead of pretending to be a public client

All open-source, on GitHub, and written with TypeScript.

https://den.dev/blog/mcp-server-auth-entra-id-session/

C++ AWS MSK IAM Auth Implementation – Goodbye Kafka Passwords — https://github.com/timeplus-io/proton/blob/develop/src/IO/Kafka/AwsMskIamSigner.cpp
#HackerNews #C++ #AWS #MSK #IAM #Auth #Implementation #Goodbye #Kafka #Passwords #AWS #MSK #IAM #C++ #Development #Kafka #Security

The open-source security / authentication stacks are great at the core of what they do.

... I still want to grab some of the devs who maintain them and shake 'em by the lapels for having really bad DevEx opinions.

Burned two hours this week failing to get basic auth working on a Docker registry instance because I wasn't properly binding the htpasswd file I set up. Time would have been cut in half if the log entry was "user not in the password file" instead of a generic "authentication failed." I'm sure someone was like "hurr durr you can't put that much detail in the logs, attackers could steal the logs and have so much info." Look... Fuck you, my (imaginary) guy, no attackers are gonna steal the logs because the service won't exist because I don't have enough debug info to stand it up in the first place.

Authenticating HTTP requests with cookies from an embedded WebView2 browser in WPF by Anthony Simmon. https://anthonysimmon.com/authenticating-http-requests-cookies-webview2-wpf/ #auth #wpf #webview #webdev #windowsdev

Authenticating HTTP requests w...

Authenticating HTTP requests with cookies from an embedded WebView2 browser in WPF by Anthony Simmon.

https://anthonysimmon.com/authenticating-http-requests-cookies-webview2-wpf/

"Common OAuth Vulnerabilities"

https://blog.doyensec.com/2025/01/30/oauth-common-vulnerabilities.html

#30MinsLearning Day 6: Try to understand the relations of asp.net core identity tables. Some are simple, a user could have multiple roles, a role has multiple users, forming a m:n by 3 tables. #dotnet #csharp #auth #identity #sql #relational #aspnetcore

How To Generate A SSH Public And Private Key Pair Using PuTTYgen To Connect To Your VPS https://youtu.be/4DbtuYBLCbk #Websplaining #PuTTYgen #PuTTY #SSH #SshKey #SshKeyPair #Authentication #Auth #Authenticate #VPS #VirtualPrivateServer #VPS #Cloud #CloudServer #Server #GpuServer #GPU #GenerateSshKeyPair

TIL! macOS supports Touch ID for sudo, but turning it on is a bit obscure

:; grep ^ /etc/pam.d/sudo_local.template
# sudo_local: local config file which survives system update and is included for sudo
# uncomment following line to enable Touch ID for sudo
#auth sufficient pam_tid.so

you need to copy the template to /etc/pam.d/sudo_local (see the include directive in /etc/pam.d/sudo) and uncomment the magic line

API Key Authentication в ASP.NET Core Web Api

Недавно я столкнулся с задачей реализации аутентификации с использованием API Key в ASP.NET Core Web API. Хотя многие авторы рекомендуют использовать IAuthorizationFilter для этой цели, я обнаружил, что это не самый подходящий вариант. У меня есть более удачный подход, которым я хотел бы поделиться, включая примеры. Реализация была протестирована как в .NET 8, так и в .NET 9.

https://habr.com/ru/articles/877302/

Pillole di privacy - Accedere a sistemi online è una necessità ed una scelta, che sia consapevole: CIE vs SPID

https://garantepiracy.it/blog/cie-vs-spid/

Now that I host another service (my #Gitea instance) I guess it really is time to look into a centralized login service. I know #Keycloak from work, but I don’t really want to deal with Java. Any recommendations for something lightweight?

Building #auth in #Python shouldn't require reinventing session management.

Check out our new Python AuthKit example app - full authentication with session handling in #Flask:

• Complete #session management
• User authentication flows
• Production-ready patterns

I believe it's time to modify Laravel's Authentication flow for a two-step scenario.

It's very difficult to make 2FA unless you deal with a middleware that checks 2FA on EVERY REQUEST, instead of just at the login flow.

How to Sign Up and Log In with Passkeys in Android Using Auth0's Native Login. https://auth0.com/blog/how-to-signup-and-login-with-passkeys-android/ #android #mobiledev #auth #passkeys #authentication #auth0 #appdev

How to: Passkeys in Android Us...

Hot take: #2FA one-time passwords (OTP) are better than #Passkeys; especially when you store the codes on a #Yubikey.

#notes 202451

do you need to implement live activies for your app in react native, check out the article here

#reactnative #auth #ios

https://jbrio.net/posts/202451/

What's new in Microsoft Entra - November 2024.

https://buff.ly/4itm0Qs
#identity #entra #cloud #azure #entraid #auth