Tag Archives: Security

DRM and the Darknet

The folks over at Ars Technica UK were resting up after Thanksgiving and reran an article from 2012. The article discusses a paper (2002) by the Microsoft engineers who worked on Palladium, Microsoft’s Trusted Windows Project. The project failed partly … Continue reading

Posted in General | Tagged | Leave a comment

A New Generation of TOR Onion Services

The TOR project has announced a new generation of Onion services. The project has been ongoing for four years and just released its alpha version. See here for the changes and how to try out the new system. The new … Continue reading

Posted in General | Tagged | Leave a comment

Practical GPG

Over at Hackaday, Pedro Umbelino has a nice article on the practical mechanics of using GPG and, more generally, public key cryptography. Rather than looking at its integration into a particular email client, Umbelino demonstrates everything on the command line. … Continue reading

Posted in General | Tagged | 2 Comments

Nist Password Guidelines

As most of you probably know, NIST recently updated their password guidelines. The three big changes are: Use long easy to remember passwords. Don’t worry so much about mixing in numbers and special characters. Don’t expire your users’ passwords—it only … Continue reading

Posted in General | Tagged | 5 Comments

The Pass Password Manager

A recurrent theme here at Irreal is that you really need to be using a password manager. Let it generate a long, unique, random key for each site and protect those keys with a secure master password (generated by, say, … Continue reading

Posted in General | Tagged | Leave a comment

Decouple Your Phone from Sensitive Accounts

Laura Shin over at Forbes.com offers some excellent advice for safeguarding your sensitive accounts such as bank accounts, Dropbox, cloud storage, and the like. Some of it is the usual sensible advice such as using a password manager that generates … Continue reading

Posted in General | Tagged | Leave a comment

If You're Looking for Another Reason to Despise Journalists...

Here you go.

Posted in General | Tagged , | Leave a comment

The Past Comes Due

Irreal oldtimers know that I have often railed about the activities of the NSA and their domestic spying and about the ever more shrill demands by law enforcement that they be given a back door into our cell phones. As … Continue reading

Posted in General | Tagged , | Leave a comment

Storing Secrets

In my never ending crusade to move as many functions as possible into Emacs, I’ve lately been dealing with functions that require a user name and password. For example, part of the mbsync configuration that downloads my emails requires a … Continue reading

Posted in General | Tagged , , | 4 Comments

Comments on the Thompson Hack

I’ve written several times (1, 2, 3) about Ken Thompson’s beautiful if terrifying hack that invisibly inserted a back door into all programs generated with the C compiler. “Invisibly” here means that there’s nothing in the C compiler’s source code … Continue reading

Posted in General | Tagged , | Leave a comment