Jump to content

Goossens

Members
 View Profile  See their activity

  • Posts

    35

  • Joined

  • Last visited

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

Goossens's Achievements

Explorer

Explorer (4/14)

  • One Year In
  • Collaborator Rare
  • One Month Later
  • Dedicated Rare
  • Week One Done

Recent Badges

1

Reputation

  1. Goossens started following JSON/Leaf Syslog Formatting for remote logging , List of all configurable settings , Single password / password list recovery and 1 other
  2. Goossens
    I have created a Powershell script that exports the PasswordState configuration data to JSON files. Feel free to try it out: https://github.com/ServaasGoossens/PasswordStateConfig2Json.
  3. Goossens
    +1 for an export of all the configuration values in the Administration area. JSON format would be my preference.
  4. Goossens
    +1
  5. Goossens
    +1 In general, I prefer to use the Windows Integrated API instead of API keys. But the use case would be similar. Also: ability to move password lists from one folder to another using the API
  6. Goossens
    +1 A roadmap would be great, even if you cannot promise any timelines.
  7.    tboggs13 reacted to a post in a topic: Develop Yubikey ONLY auth for browser plugin (FIDO 2) to replace Master Password
  8. Goossens
    +1 FIDO U2F is important, but FIDO2 with passwordless logins should not be ignored either. The best choice is probably to add support for WebAuthn to PasswordState. As I understand it, this would allow the use of U2F devices as a 2nd factor as well as FIDO2 devices for passwordless login. This includes Passkeys, Yubikeys, Windows Hello and others. Platform support for WebAuthn is very good nowadays. Refs: https://fidoalliance.org/fido2-2/fido2-web-authentication-webauthn/ https://www.nitrokey.com/blog/2022/fido2-webauthn-passkeys-2022-and-2023 https://support.yubico.com/hc/en-us/articles/360016615020-Operating-system-and-web-browser-support-for-FIDO2-and-U2F Related:
  9. Goossens
    +1 Please include Windows Hello (which is also FIDO2 certified)
  10. Goossens
    +1 for the password list recycle bin
  11. Goossens
    +1 Slightly related:
  12.    Goossens reacted to a post in a topic: JSON/Leaf Syslog Formatting for remote logging
  13. Goossens
    +1 We have also started sending PasswordState's log data to a SIEM. Given PasswordState's support for sending log data to a syslog server, I assumed that the syslog standard would be followed. But, unfortunately, we observe that the data sent over TCP does not comply to RFC 6587 section 3.4, nor does it comply to RFC 5424 section 6. Besides, a more structured log format would be much appreciated, using a modern standard, as described by JohnB above. Thank you.
  14. Goossens
    +1. Imho, -UseSSL should be the default in all scripts that do WinRM. Another option (or workaround) would be to allow disabling built-in powershell scripts. I can then add my own versions of the scripts and be sure that the originals can no longer be used.
  15. Goossens
    +1
  16.    Goossens reacted to a post in a topic: API OTP additional response
  17. Goossens
    +1
  18. Goossens
    +1 This request is similar to the one below:
  19. Goossens
    +1
×
×
  • Create New...