: How can you prevent someone destroying your app if they get into your account on heroku? Heroku is wonderful but it's slightly concerning that if your Heroku login is compromised someone can
Heroku is wonderful but it's slightly concerning that if your Heroku login is compromised someone can simply destroy your entire app and business.
Is there any way of preventing this using multi factor authentication or similar?
More posts by @Alves908
1 Comments
Sorted by latest first Latest Oldest Best
I would treat this scenario the same as a fire, flood, or hardware failure. What you're describing is essentially a disaster recovery scenario. Make regular app and DB backups (your code really should be in a distributed, secure source control solution, such as git), and follow best-practices for password security in the first place.
If you're looking for a 100% guaranteed solution, it doesn't exist. The best you can do is have good password security and backup practices, which will lower your risk of compromise/failure to the point that a Heroku failure becomes mathematically more likely than an unrecoverable compromise such as you outline.
When it comes to disaster recovery, you have to have a backup plan.
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.