Tech, Web

Multi-factor Authentication Is Simple Enough Now That Everyone Should Be Using It

Multi-factor Authentication (also sometimes called Two-Factor authentication) is a method provided by many sites and services to help their users better secure access to their accounts.  For the remainder of this post, I’ll use MFA for short. Most major web services now offer some sort of MFA, and over the last several years, integrating the use of MFA in to…

Continue Reading

Tech, Web, Work

Automatically insert Google Analytics tracking code as an outbound IIS rule

Google Analytics is a wonderful tool for tracking the behavior of visitors to a web site, but one of the things that has always been challenging for site administrators is finding a way to embed the javascript necessary to track visits via Google Analytics in to every page on a web server.  Google recommends strategies like providing server-side includes with…

Continue Reading

Tech, Web, Work

Defending against WordPress brute-force attacks using built in features of IIS

Throughout the past week, a very large network of compromised computers has been pounding away at sites using the WordPress content management platform, attempting to access those sites by continually attempting logins using default WordPress usernames, along with a combination of passwords. For these attacks to work, the attacking machines have to continually try various combinations of passwords, throwing request…

Continue Reading