<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>2FA Archives</title>
	<atom:link href="https://socialemotion.online/tag/2fa/feed/" rel="self" type="application/rss+xml" />
	<link>https://socialemotion.online/tag/2fa/</link>
	<description>Najnovije vesti o društvenim mrežama</description>
	<lastBuildDate>Sat, 05 May 2018 18:39:55 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0.1</generator>

<image>
	<url>https://i0.wp.com/socialemotion.online/wp-content/uploads/2019/04/cropped-20190331_102208911_iOS.png?fit=32%2C32&#038;ssl=1</url>
	<title>2FA Archives</title>
	<link>https://socialemotion.online/tag/2fa/</link>
	<width>32</width>
	<height>32</height>
</image> 
<site xmlns="com-wordpress:feed-additions:1">139836276</site>	<item>
		<title>Twitter savetuje korisnike da resetuju lozinke nakon otkrivanja grešaka</title>
		<link>https://socialemotion.online/twitter-savetuje-korisnike-da-resetuju-lozinke-nakon-otkrivanja-gresaka/</link>
		
		<dc:creator><![CDATA[SEO]]></dc:creator>
		<pubDate>Sat, 05 May 2018 18:26:52 +0000</pubDate>
				<category><![CDATA[Web vesti]]></category>
		<category><![CDATA[2FA]]></category>
		<category><![CDATA[ažuriranje]]></category>
		<category><![CDATA[bezbednost]]></category>
		<category><![CDATA[Društvene mreže]]></category>
		<category><![CDATA[Twitter]]></category>
		<guid isPermaLink="false">https://socialemotion.online/?p=5820</guid>

					<description><![CDATA[<p>Ako ste korisnik usluge Twitter, verovatno ste već dobili poruku: &#8220;Vreme je za resetovanje lozinke.&#8221; Twitter je objavio 3. maja da je otkrio problem u svom sistemu koji je izložio korisničke lozinke potencijalnom riziku. Kompanija ove društvene mreže počela je savetovati korisnike kasno poslepodne sa savetima, e-poštom poslatom na registrovane adrese i, naravno, putem Twittera. &#8230;</p>
<p>The post <a href="https://socialemotion.online/twitter-savetuje-korisnike-da-resetuju-lozinke-nakon-otkrivanja-gresaka/">Twitter savetuje korisnike da resetuju lozinke nakon otkrivanja grešaka</a> appeared first on <a href="https://socialemotion.online">Social Emotion</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p><span id="result_box" lang="hr">Ako ste korisnik usluge Twitter, verovatno ste već dobili poruku: &#8220;Vreme je za resetovanje lozinke.&#8221;</span><br />
<span id="result_box" lang="hr"><br />
Twitter je objavio 3. maja da je otkrio problem u svom sistemu koji je izložio korisničke lozinke potencijalnom riziku. Kompanija ove društvene mreže počela je savetovati korisnike kasno poslepodne sa savetima, e-poštom poslatom na registrovane adrese i, naravno, putem Twittera.</span></p>
<blockquote><p><strong><span id="result_box" lang="hr"><br />
</span><span id="result_box" lang="hr">&#8220;Nedavno smo pronašli bug koji je upisivao neenkriptovane lozinke u internom logu. Fiksirali smo bug i nemamo nikakvih saznanja o kršenju ili zloupotrebi bilo koga. Kao mera opreza, razmislite o promeni lozinke na svim uslugama na kojima ste koristili ovu lozinku.&#8221; Napisao je Twitter.</span></strong></p></blockquote>
<div id="gt-res-content">
<div id="gt-res-dir-ctr" class="trans-verified-button-small" dir="ltr"><span id="result_box" lang="hr"><span title="Somewhat ironically, Twitter reported the password issue on what has been declared World Password Day.">Pomalo ironično, Twitter je objavio problem sa lozinkom na onome što je proglašeno Svetskim danom lozinki. </span><span title="In a blog post, Twitter CTO Parag Agrawal explained the circumstances behind the password issue, which shares a striking similarity to another recently disclosed issue at GitHub. ">U postu na blogu, Twitter CTO Parag Agrawal objasnio je okolnosti iza lozinke, koja deli upečatljivu sličnost s još jednim nedavno otkrivenim problemom na GitHubu.</span></span></div>
<div class="trans-verified-button-small" dir="ltr"><span id="result_box" lang="hr"><span title="In a blog post, Twitter CTO Parag Agrawal explained the circumstances behind the password issue, which shares a striking similarity to another recently disclosed issue at GitHub. "><br />
</span><span title="&quot;We mask passwords through a process called hashing using a function known as bcrypt, which replaces the actual password with a random set of numbers and letters that are stored in Twitter's system,&quot; Agrawal wrote."><em>&#8220;Maskiramo lozinke putem procesa koji se naziva hashing pomoću funkcije poznate kao bcrypt, koja zamenjuje stvarnu lozinku slučajnim brojem brojeva i slova upisanih u Twitterovom sistemu&#8221;</em>, napisao je Agrawal. </span><em><span title="&quot;This allows our systems to validate your account credentials without revealing your password.&quot; ">&#8220;To omogućava našem sistemu potvrdu verodostojnosti vašeg naloga bez otkrivanja vaše lozinke&#8221;.</span></em></span></div>
<div class="trans-verified-button-small" dir="ltr"><span id="result_box" lang="hr"><span title="&quot;This allows our systems to validate your account credentials without revealing your password.&quot; "><br />
</span><span title="The problem was that a bug in Twitter's system enabled plain text passwords to be read and stored by a log before the passwords were hashed with bcrypt, Agrawal said.">Problem je bio u tome što je bug u Twitterovom sistemu omogućio čitanje tekstualnih lozinki koje su čitali i upisivali u log fajl pre nego što su lozinke izbrisane s bcryptom, rekao je Agrawal. </span><span title="He emphasized that Twitter found the flaw on its own and has already taken steps to prevent a reoccurrence of the flaw. ">Naglasio je da će Twitter sam pronaći nedostatak i već je preuzeo korake kako bi sprečio ponavljanje nedostatka.</span></span></div>
<div class="trans-verified-button-small" dir="ltr"><span id="result_box" lang="hr"><span title="He emphasized that Twitter found the flaw on its own and has already taken steps to prevent a reoccurrence of the flaw. "><br />
</span><span title="GitHub made a similar announcement on May 1, alerting its users that it had discovered a bug that exposed users' passwords to the company's internal logging system.">GitHub je napravio sličnu najavu 1. maja, upozoravajući korisnike da je otkrila bug koji je izložio korisničke lozinke u internom sistemu prijavljivanja.</span></span></div>
<div dir="ltr"></div>
</div>
<div dir="ltr"><strong>Rizik za korisnike</strong></div>
<div dir="ltr"></div>
<div dir="ltr"><span title="Twitter has stated that it is not aware of anyone either within Twitter or externally abusing or even accessing the passwords.">Twitter je izjavio da niko ni na Twitteru niti izvan njega nije zloupotrebio ili pristupao lozinkama. </span><span title="That being the case, Twitter is still advising all of its users to update their passwords, out of an abundance of caution. ">Iako je to slučaj, Twitter još uvek savetuje svim svojim korisnicima da ažuriraju svoje lozinke, iz predostrožnosti.</span></div>
<div dir="ltr"><span title="That being the case, Twitter is still advising all of its users to update their passwords, out of an abundance of caution. "><br />
</span><span title="The fact the both GitHub and Twitter reported the same issue within days of each other could well indicate a potentially broader issue.">Činjenica da su GitHub i Twitter prijavili isto pitanje u roku od nekoliko dana mogla bi ukazivati ​​na potencijalno širi problem. </span><span title="While both companies could have simply misconfigured their systems, but perhaps there is an issue in an underlying software library or component used by both companies (and likely others).">Iako su obe firme mogle jednostavno pogrešno konfigurisati svoje sisteme, možda postoji problem u biblioteci softvera ili komponenti koju koriste obe firme (a verovatno i drugi). </span><span title="If that is the case, then expect to see other vendors, sites and services making disclosures in the days ahead about password resets. ">Ako je to slučaj, onda očekujte da vidite i druge pružaoce usluga, web-sajtove kako će u danima koji slede objavljivati ​​podatke u danima koji su unapred predviđeni za poništavanje lozinki.</span></div>
<div dir="ltr"><span title="If that is the case, then expect to see other vendors, sites and services making disclosures in the days ahead about password resets. "><br />
</span><span title="Also of note is that Twitter has not identified how long the issue was present in its system.">Takođe je uočeno da Twitter nije utvrdio koliko dugo je problem bio prisutan u svom sistemu. </span><span title="Whether the passwords were exposed for days, weeks, months or even years is simply not known publicly at this time.">Bilo da su lozinke bile izložene danima, nedeljama, mesecima ili čak godinama, u ovom trenutku jednostavno nije javno poznata. </span><span title="Even though Twitter does not believe the passwords were incorrectly accessed, the time horizon on the exposure will impact the risk profile.">Iako Twitter veruje da lozinkama nije nepravilno pristupano, vremenski faktor uticaće na profil rizika.</span></div>
<div dir="ltr"></div>
<div dir="ltr"><strong>Šta bi korisnici trebalo da urade</strong></div>
<div dir="ltr"></div>
<div dir="ltr">Korisnici bi trebalo da preduzmu prvi korak menjajući svoje Twitter lozinke, kao što firma i predlaže. Uzimajući u obzir da neki korisnici koriste iste lozinke na više sajtova, Twitter takođe predlaže da korisnici promene lozinke i na drugim servisima.</div>
<div dir="ltr">Twitter takođe predlaže korisnicima da aktiviraju verifikaciju logovanja putem  <em>&#8220;two-factor authentication (2FA)&#8221;</em> na svojim Twitter nalozima. U decembru 2017, Twitter je omogućio korisnicima da lakše aktiviraju 2FA, pružajući tako novu uslugu zaštite osim SMS-a.</div>
<blockquote>
<div dir="ltr"><strong>Sa  aktiviranim 2FA, iako napadač dođe do korisnikove Twitter lozinke, još uvek neće moći pristupiti nalogu bez 2FA koda.</strong></div>
</blockquote>
<div id="gt-res-tools">
<div id="gt-res-tools-l">
<div id="gt-pb-star">
<div class="goog-toolbar-button goog-inline-block trans-pb-button" tabindex="0" role="button" aria-hidden="false" aria-label="Sign in to save to Phrasebook" data-tooltip-align="t,c" data-tooltip="Sign in to save to Phrasebook"></div>
</div>
<div id="gt-res-copy" class="copy-button goog-toolbar-button" tabindex="0" role="button" aria-hidden="false" aria-label="Copy" data-tooltip-align="t,c" data-tooltip="Copy"></div>
<div id="gt-res-listen" class="trans-listen-button goog-toolbar-button" tabindex="0" role="button" aria-hidden="false" aria-pressed="false" aria-label="Listen" data-tooltip-align="t,c" data-tooltip="Listen"></div>
<div id="gt-res-share" class="share-button goog-toolbar-button" tabindex="0" role="button" aria-hidden="false" aria-label="Share" data-tooltip-align="t,c" data-tooltip="Share"></div>
</div>
</div>
<p>The post <a href="https://socialemotion.online/twitter-savetuje-korisnike-da-resetuju-lozinke-nakon-otkrivanja-gresaka/">Twitter savetuje korisnike da resetuju lozinke nakon otkrivanja grešaka</a> appeared first on <a href="https://socialemotion.online">Social Emotion</a>.</p>
]]></content:encoded>
					
		
		
		<post-id xmlns="com-wordpress:feed-additions:1">5820</post-id>	</item>
	</channel>
</rss>
