|
|
|
|
|
|
by danenania
3022 days ago
|
|
|
Thanks for the feedback and for laying out your investigation :) I'd say it's pretty unfair to call a 20 char id 'security-by-obscurity', unless you want to call almost every username/password authentication mechanism the same. The id has vastly more entropy than the average password and is far beyond brute-forcible. Along the same lines, there are no known attacks that can break 2048 bit PGP with a sufficiently strong passphrase. So there are two layers of security that cannot be broken by any real-world attacks. I believe that is indeed sufficient for protecting customer data. It's likely that we'll move away from the S3 failover eventually in favor of our own replication strategy. This wouldn't really have security implications, but it does make it simpler to have a single source of truth for logging, which is coming soon. |
|
|
your product is very well designed, seems like a tremendous customer experience. best of luck; i hope you continue to grow