Tag Archives: Security

Rating Secure Messaging Applications

The EFF has published its Secure Messaging Scorecard that rates several messaging applications on several important security axes. Some have all the desired attributes, others have none. Some, like Apple's iMessage have most of the attributes but fail to be … Continue reading

Posted in General | Tagged | Leave a comment

Genes Best Removed from the Pool

Yikes! Who would do this? No Irreal readers, I'm certain. Worse, all these instructions appear to be aimed at developers who should surely know better. I especially like the ones with sudo. Really, if you enter one of those commands … Continue reading

Posted in General | Tagged | Leave a comment

PGP Problems

I've often written about the need to encourage wider use of encrypted emails. As everyone knows, the main problem is that existing email encryption solutions are too hard to use: Aunt Millie simply won't deal with the complexities. But what … Continue reading

Posted in General | Tagged | Leave a comment

The Email Self Defense Project

The Free Software Foundation has a new project aimed at getting people to install and use email encryption software. They have published a guide and infographic that demonstrates in simple terms how (and why) to set up GnuPG and then … Continue reading

Posted in General | Tagged | 3 Comments

Troy Hunt on the Cobra Effect

Troy Hunt comments on that incredibly silly tweet by British Gas explaining why they disable pasting into the password field on their site. I wrote about that here. Sadly, it turns out that this practice is more widespread than I … Continue reading

Posted in General | Tagged | Leave a comment

Encrypt Your Dropbox Data!

I've told you many times (here, here, here, here, and here) that if you're using Dropbox and you have any file in it that you wouldn't like to see on the Internet, then you better be encrypting those files. Dropbox … Continue reading

Posted in General | Tagged | Leave a comment

Password Silliness Epitomized

Remember how I told you of a sure tip off to an insecure site? Were you looking for an in-the-wild example? Well, here it is. The very apotheosis of a bad password policy. Forget, for a moment, the ridiculous explanation … Continue reading

Posted in General | Tagged | Leave a comment

More Password Field Silliness

The other day I wrote about the stupid password policies and handling that many sites have. It appears that I'm not alone in being infuriated by this nonsense. David Pashley has his own post documenting some of the silliness. In … Continue reading

Posted in General | Tagged | Leave a comment

Handling Password Fields

With the advent of the heartbleed debacle you've probably spent a bunch of time changing your passwords. I know I have. Having to update several passwords has opened an old wound: the really really stupid policies and coding behind password … Continue reading

Posted in General | Tagged | 4 Comments

Another GnuPG Tutorial

I've written many times about GnuPG and other programs that support the OpenPGP standard (the last time here). I really, really wish that everyone would start using it. That would certainly put a crimp in the NSA's operations. Over at … Continue reading

Posted in General | Tagged | Leave a comment