Security Of Cloud Shared Links
-
@BRRABill said in Security Of Cloud Shared Links:
@scottalanmiller said
So it would be, I would guess, trillions of times more secure than normal username/password situations.
So you would have no issue sharing a highly confidential file with me via Google Drive?
Less than any other shared service type. It's securely hosted and heavily password protected. It's not perfect, nothing is. But it is extremely secure.
And if you only share it from time to time and not forever, it becomes insanely secure.
-
And, compromising one document does not expose another. It's a crazy long password for each file!
-
@scottalanmiller said in
Less than any other shared service type. It's securely hosted and heavily password protected. It's not perfect, nothing is. But it is extremely secure.
But OneDrive is also pretty secure. If you add both the link and the auth key it has to be 40 characters plus.
Would you feel moderately secure there as well?
-
@BRRABill said in Security Of Cloud Shared Links:
Would you feel moderately secure there as well?
Moderately? What do you consider "very" secure? Do you mean "not shared" files or "already deleted" files?
-
@scottalanmiller said
Moderately? What do you consider "very" secure? Do you mean "not shared" files or "already deleted" files?
I mean if you were using OneDrive (or ODfB or SharePoint) and wanted to share a very confidential file with a client would you feel confident doing so?
-
@BRRABill said in Security Of Cloud Shared Links:
@scottalanmiller said
Moderately? What do you consider "very" secure? Do you mean "not shared" files or "already deleted" files?
I mean if you were using OneDrive (or ODfB or SharePoint) and wanted to share a very confidential file with a client would you feel confident doing so?
More confident than any other method. So on a scale of 1 to 10, 1 being totally insecure and 10 being "as secure as any product you can get today" I'd be pretty close to 10.
-
Of course, you could make your OWN service for this that requires a long username, a super long password, a dongle, an RSA card, responding to a text message AND a 500 character URL.... but within reason this is basically as secure as things get.
-
@scottalanmiller said in Security Of Cloud Shared Links:
Of course, you could make your OWN service for this that requires a long username, a super long password, a dongle, an RSA card, responding to a text message AND a 500 character URL.... but within reason this is basically as secure as things get.
What about things like ownCloud where you get a link sent to you, and a password sent to you (preferably by different means)...?
-
@dafyre said in Security Of Cloud Shared Links:
@scottalanmiller said in Security Of Cloud Shared Links:
Of course, you could make your OWN service for this that requires a long username, a super long password, a dongle, an RSA card, responding to a text message AND a 500 character URL.... but within reason this is basically as secure as things get.
What about things like ownCloud where you get a link sent to you, and a password sent to you (preferably by different means)...?
It's the combined length that makes it secure.
-
Do you know if the SharePoint nomenclature is the same for everyone that uses the hosted version?
I mean, I guess everyone has your e-mail address and domain anyway. Just seemed ... personal to be out there like that.
-
@BRRABill said in Security Of Cloud Shared Links:
Do you know if the SharePoint nomenclature is the same for everyone that uses the hosted version?
I mean, I guess everyone has your e-mail address and domain anyway. Just seemed ... personal to be out there like that.
It would all be the same, yes.
-
-
@BRRABill said in Security Of Cloud Shared Links:
Do you know if the SharePoint nomenclature is the same for everyone that uses the hosted version?
I mean, I guess everyone has your e-mail address and domain anyway. Just seemed ... personal to be out there like that.
You're email address like you home address isn't private - really can't be. So it's not something that's part of security.
-
@BRRABill said in Security Of Cloud Shared Links:
@scottalanmiller said
It would all be the same, yes.
Well, I guess POTUS wouldn't want to use that!
I don't follow.
-
@scottalanmiller said
I don't follow.
I guess it just felt ... dirty ... to give out that much info.
-
@BRRABill said in Security Of Cloud Shared Links:
@scottalanmiller said
I don't follow.
I guess it just felt ... dirty ... to give out that much info.
I still have no idea what you are referencing.
-
@dafyre said in Security Of Cloud Shared Links:
@scottalanmiller said in Security Of Cloud Shared Links:
Of course, you could make your OWN service for this that requires a long username, a super long password, a dongle, an RSA card, responding to a text message AND a 500 character URL.... but within reason this is basically as secure as things get.
What about things like ownCloud where you get a link sent to you, and a password sent to you (preferably by different means)...?
ownCloud has link sharing also.
-
I consider things like this secure because the document is only accessible when you choose to make it acessible.
Unlike the fake security that is Facebook. If you upload media to Facebook, it is accessible to anyone that figures out the link. Your Facebook security settings do not apply.
Like this image, posted "friends only" last week.
-
That kind of touches on my next question.
Are any of these links ever available to search engines?
I was playing around with YouTube video streaming last week, in a testing scenario, and within a few minutes all my test video were at the top of a Google search for my company.
Needless to say I freaked a bit.
-
Youtube is Google's product, why would you expect anything less?
As for the links, if there aren't actually listed anywhere on the site, and the DB of the websites aren't spider-able, you should be good.