The Homepage of J. Orlin Grabbe
Crypto, Darknets, Digital Cash, Bitcoin, Decentralized Networked Tribes, P2P, Tech, Liberty, Art, Sex, Drugs and Rock & Roll.Posts Tagged with "security"
Anti-Forensics: Occult Computing
http://www.irongeek.com/i.php?page=videos/anti-forensics-occult-computing
Continue reading...OAuth – A great way to cripple your API
Monday, March 25, 2013
Comments Off
http://insanecoding.blogspot.com/2013/03/oauth-great-way-to-cripple-your-api.html Perhaps the most damaging point against OAuth, is that the original designer behind it decided to remove his name from the specification, and is washing his hands clean of it.
Continue reading...Schneier on Security: How Complex Systems Fail
Wednesday, February 27, 2013
Comments Off
http://www.schneier.com/blog/archives/2013/02/how_complex_sys.html
Continue reading...5 Security Holes Almost Everyone’s Vulnerable To
Thursday, January 31, 2013
Comments Off
http://lifehacker.com/5980126/5-security-holes-almost-everyones-vulnerable-to
Continue reading...Users Scramble as GitHub Search Exposes Passwords, Security Details
Tuesday, January 29, 2013
Comments Off
http://www.webmonkey.com/2013/01/users-scramble-as-github-search-exposes-passwords-security-details/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed: wired/index (Wired: Top Stories)
Continue reading...Oracle releases emergency Java patch; experts warn flaws may take 2 years to fix
Tuesday, January 15, 2013
Comments Off
http://www.networkworld.com/community/blog/oracle-releases-emergency-java-patch-experts-warn-flaws-may-take-2-years-fix
Continue reading...Terms of Service as a Security Threat
Thursday, January 10, 2013
Comments Off
http://www.schneier.com/blog/archives/2012/12/terms_of_servic.html
Continue reading...The Only Secure Password Is One You Don’t Even Know That You Know?
Saturday, December 15, 2012
Comments Off
http://www.popsci.com/science/article/2012-11/why-only-secure-password-one-you-don’t-even-know-you-know
Continue reading...The problem(s) with OpenID
Thursday, December 6, 2012
Comments Off
http://www.untrusted.ca/cache/openid.html
Continue reading...Never Trust a Chinamen With Your Laptop
Thursday, December 6, 2012
Comments Off
http://www.infoworld.com/d/security/when-in-china-dont-leave-your-laptop-alone-208168
Continue reading...New 25 GPU Monster Devours Passwords In Seconds
Thursday, December 6, 2012
Comments Off
http://securityledger.com/new-25-gpu-monster-devours-passwords-in-seconds/
Continue reading...Tatu Ylonen, father of SSH, says security is ‘getting worse’
Thursday, December 6, 2012
Comments Off
http://www.networkworld.com/cgi-bin/mailto/x.cgi?pagetosend=/news/2012/072512-blackhat-ylonen-261134.html&pagename=/news/2012/072512-blackhat-ylonen-261134.html&pageurl=http://www.networkworld.com/news/2012/072512-blackhat-ylonen-261134.html&site=security&nsdr=n
Continue reading...The most dangerous code in the world: validating SSL certificates in non-browser software
Thursday, December 6, 2012
Comments Off
https://crypto.stanford.edu/~dabo/pubs/abstracts/ssl-client-bugs.html
Continue reading...OAuth 2.0 and the Road to Hell
Thursday, December 6, 2012
Comments Off
http://hueniverse.com/2012/07/oauth-2-0-and-the-road-to-hell/
Continue reading...Cisco locks customers out of their own routers, only lets them back in if they agree to being spied upon and monetized
Friday, July 6, 2012
Comments Off
http://boingboing.net/2012/07/03/cisco-locks-customers-out-of-t.html
Continue reading...Moxie Marlinspike and Trevor Perrin Unveil New Way to Trust Certificates
Thursday, May 24, 2012
Comments Off
https://threatpost.com/en_us/blogs/cryptographers-unveil-new-way-trust-certificates-052312
Continue reading...New York Legislation Would Ban Anonymous Online Speech
Thursday, May 24, 2012
Comments Off
http://www.wired.com/threatlevel/2012/05/anonymous-online-speech-ban/
Continue reading...Fluid – Turn Your Favorite Web Apps into Real Mac Apps.
Wednesday, February 8, 2012
http://www.fluidapp.com/
Continue reading...TPM-backed SSL
Tuesday, February 7, 2012
http://blog.habets.pp.se/2012/02/TPM-backed-SSL This is a short howto on setting up TPM-backed SSL. This means that the secret key belonging to an SSL cert is protected by the TPM and cannot be copied off of the machine or otherwise inspected. Meaning even if you get hacked the attackers cannot impersonate you, if you manage to kick them [...]
Continue reading...2010: A Web Hacking Odyssey – Top Ten Hacks of the Year
Tuesday, January 31, 2012
2010: A Web Hacking Odyssey – Top Ten Hacks of the Year from Jeremiah Grossman
Continue reading...Require Skype but want to avoid entire Desktop keystroke logging: SkypeKit
Tuesday, January 10, 2012
http://developer.skype.com/public/skypekit
Continue reading...HSTS:// Canonical redirect pitfalls with HTTP Strict Transport Security and some solutions
Saturday, December 31, 2011
http://coderrr.wordpress.com/2010/12/27/canonical-redirect-pitfalls-with-http-strict-transport-security-and-some-solutions/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed: coderrr (coderrr)
Continue reading...Why sequences of words picked at random make better, memorable passwords
Thursday, October 20, 2011
http://blog.agilebits.com/2011/08/better-master-passwords-the-geek-edition/
Continue reading...Syncany: A Great Dropbox Alternative Which Supports Multiple Storage Types
Friday, June 24, 2011
http://www.webupd8.org/2011/05/syncany-great-dropbox-alternative-which.html Besides the fact that it’s open source, Syncany encrypts the data on your machine so your files are safe. Further more, Syncany is extensible through plugins so it will be easy to add new protocols. Syncany currently supports FTP, Box.net, Amazon S3, Google Storage, IMAP (example: you could use Gmail or some other mail [...]
Continue reading...On Application Isolation: To Toggle, or not to Toggle: The End of Torbutton (Tor & Firefox)
Wednesday, May 4, 2011
http://blog.torproject.org/blog/toggle-or-not-toggle-end-torbutton
Continue reading...Hacker News Comments on: The Linux Security Circus: On GUI isolation
Tuesday, April 26, 2011
http://hackerne.ws/item?id=2477667
Continue reading...The Invisible Things Lab’s blog: Partitioning my digital life into security domains
Sunday, April 24, 2011
http://theinvisiblethings.blogspot.com/2011/03/partitioning-my-digital-life-into.html
Continue reading...Qubes Beta 1 Has Been Released.
Sunday, April 24, 2011
http://theinvisiblethings.blogspot.com/2011/04/qubes-beta-1-has-been-released.html Qubes is an open source operating system designed to provide strong security for desktop computing. Qubes is based on Xen, X Window System, and Linux, and can run most Linux applications and utilize most of the Linux drivers. In the future it might also run Windows apps.
Continue reading...The Linux Security Circus: On GUI isolation
Sunday, April 24, 2011
http://theinvisiblethings.blogspot.com/2011/04/linux-security-circus-on-gui-isolation.html
Continue reading...Why the US “password revolution” won’t work
Sunday, April 24, 2011
http://theinvisiblethings.blogspot.com/2011/04/why-us-password-revolution-wont-work.html
Continue reading...CERT Australia – We Keep Our Secret Database of Software Backdoors and Bugs Secret from You To Protect You
Wednesday, April 20, 2011
http://www.zdnet.com.au/inside-cert-australia-339311895.htm
Continue reading...Eben Moglen Wants to Reshape Internet With a “Freedom Box”
Friday, February 18, 2011
http://www.nytimes.com/2011/02/16/nyregion/16about.html?_r=1&ref=nyregion
Continue reading...Qualys BrowserCheck: Start a browser check to identify some security issues in your browser
Friday, February 18, 2011
https://browsercheck.qualys.com/
Continue reading...Reliably Erasing Data from Flash-Based Solid State Drives
Friday, February 18, 2011
http://www.usenix.org/events/fast11/tech/tech.html#Wei
Continue reading...Urgent Call for Privacy-Enhanced Mobile Data Storage and Self-Destruct Mechanisms
Friday, January 28, 2011
http://lauren.vortex.com/archive/000797.html
Continue reading...US Work E-Mail Not Protected by Attorney-Client Privilege
Friday, January 21, 2011
http://www.wired.com/threatlevel/2011/01/email-attorney-client-privilege/
Continue reading...Microsoft confirms new Windows Zero-Day Bug, Plans Patch Release Someday
Monday, January 10, 2011
http://www.computerworld.com/s/article/9203179/Microsoft_confirms_new_Windows_zero_day_bug
Continue reading...The case for lousy passwords | ITworld
Friday, December 17, 2010
http://www.itworld.com/personal-tech/131005/the-case-lousy-passwords
Continue reading...Open Security Training – Security and Hacking Tools
Thursday, December 9, 2010
http://tools.securitytube.net/index.php?title=Open_Security_Training
Continue reading...GitHub moves to SSL, but remains Firesheepable
Wednesday, November 3, 2010
Link: GitHub moves to SSL, but remains Firesheepable
Continue reading...
Search the Site:
Copyright © 2013 The Home Page of J. Orlin Grabbe
Powered by the sexy Thrilling Theme 
Tuesday, April 9, 2013
Comments Off