Комментарии:
This is so informative. Thank you for making this video.
ОтветитьThis was very helpful and well explained. Thank you!
ОтветитьP1=P2=Pn, and what will make the user not do PA=P1=Pn ..., but PA != P1 != Pn in the SSO case ?
ОтветитьI swear we have a lady that calls in almost every 3-4 days that she has forgot her main Windows login password. How is that even possible? Are people really that stupid?
ОтветитьPlease..... Please... Please
ОтветитьWow ..this is awesome .
Sir ,i have completed my course on cyber security law ..it's so interesting...hope i will get a job soon so that i can explore and learn more about it and contribute positively to securing the cyber space ..
Isn't SSO like his third example. The SSO password gets compromised, it will provide access to the rest.
ОтветитьShort and precise ❤
ОтветитьI am enjoying this channel every time
ОтветитьSPoF is when sso stopped working, not when someone figured user’s password.
ОтветитьGood work.. we're getting there step by step..
ОтветитьWhat about keypass?
ОтветитьIsn't single point of failure more related to availablity. What if the SSO application goes down or is not accessible?
ОтветитьDoes anyone watch this video just to learn english like me?
ОтветитьPassword manager solves this, Bitwarden solves this. Wasted my time
ОтветитьI don't considera myself a super smart person, but sometimes I can't understand why people can't figure our some very simple solutions.
Just create a sead with about 6 to 8 characters like j%7&=83. Now, of you need to create an account in Google, take the first 2 and last 2 letters, and glue them to your seed: GOj%7&=83LE. Of you are creating ot in Yahoo, then YAj%7&=83OO.
There. You have virtually one password per website and you just need to remember one thing (the seed). No need for vault, no need for SSO.
Why this is not obvious to everyone is beyond me.
Good solution but it has a flaw. It's better for hackers to steal SSO of many users and get access to their services throw attacking single SSO. However all says that SSO is highly protected and blah-blah but it will be cheaper to find vulnerabilities and attack a single service instead of a couple ones. Like it was with lastpass.
ОтветитьLet's always do good 🙏
ОтветитьSSO is NO Longer SAFE! HELL, WHAT IS?🤔🤔
ОтветитьThere’s still the problem with consistent support for SSO authentication across services, especially in the personal space. While the situation looks better in the corporate environment, many services still don’t support SSO altogether or only allow it in addition to the primary password.
Ответить🤝🤝
ОтветитьWorth it... Bravo 👏
ОтветитьSPoF here is the guy with the smile :) and always will be. SSO makes it easier to get one password to rule it all and MFA would not help, if guy_with_the_smile's butt is on fire :)
Ответитьnice explanation
Ответить