‘Security’ Archive

“Your browser fingerprint appears to be unique among the 5,198,585 tested so far”. What?! 2015-04-11 7 Comments

While https://panopticlick.eff.org/ is not really new, I learned about that site only recently. And while I knew that browser self-identification would reduce my anonymity on the Internet, I didn’t expect this result: Your browser fingerprint appears to be unique among the 5,198,585 tested so far. Wow. Why? Let’s try one of the others browsers I […]

Fwd: The Perl Jam: Exploiting a 20 Year-old Vulnerability [31c3] 2015-01-10 No Comments

I finally took the time to watch The Perl Jam: Exploiting a 20 Year-old Vulnerability [31c3]. Oh, my, god.

Fwd: Chrome Plans to Mark All ‘HTTP’ Traffic as Insecure from 2015 2015-01-01 1 Comment

I’ve been waiting for this (without knowing): Chrome Plans to Mark All ‘HTTP’ Traffic as Insecure from 2015 I hope it will increase the pressure on websites to turn to SSL that so far are still ignoring the issue. A few coming to my mind: BSR Shop — no SSL at all Finya — no […]

On safe-mail.net free, anonymous e-mail 2013-10-05 No Comments

Since lavabit.com went down, I have been looking for a substitute: a mail provider with anonymous set-up process IMAP support SSL support free of cost hushmail.com reserves IMAP access to paying customers. With safe-mail.net it is the other way around: SMTP access is reserved to paying customers, IMAP is not. So it is a good […]

Fwd: More tricks for defeating SSL in practice 2012-03-22 No Comments

More Tricks For Defeating SSL in Practice – ekoparty Security Conference 5th edition from ekoparty on Vimeo. I have actually been watching the Black USA 2009 version but it seems very very similar to the ekoparty one above, except without the view of the speaker.

Fwd: SSL And The Future Of Authenticity 2012-03-21 No Comments

At 07:29 I should be long sleeping but this video of 2011 that I stumbled upon has kept me out of bed for longer. For entry-level security people like me the level of detail is great with this talk. At the point where the focus moves to a proposed solution that the speaker is involved […]

Fwd: [28c3] Effective Denial of Service attacks against web application platforms 2012-01-07 No Comments

Very interesting attack/issue, check it out.