Quirks in Tech

An informal space where I think about the oddities of technology, politics, and privacy. Also some other stuff.

Showing 169 posts tagged security

A really good example of how services can, and should, warn users about how to respond to the Heartbleed OpenSSL vulnerability.

Apr 9, 2014

Heartbleed bug found in key encryption technology risks exposing private data ∞

This was an absolute gift to intelligence agencies all over the world. And one that was - and is - being widely exploited in the wild by criminals and other unauthorized third-parties.

Apr 9, 2014

"The NSA can’t break Tor and it [ticks] them off. Most crypto drives the NSA batty,” [Bruce Schneier] said. “Encryption works and it works at scale. The NSA may have a large budget than all of the other intelligence agencies combined, but they are not made of magic. Our goal should be to make eavesdropping more expensive. We should have the goal of limiting bulk collection and forcing targeted collection."

– Bruce Schneier, quoted in Dennis Fisher, “The NSA is ‘not made of magic’

Feb 26, 2014


You can now take extra precaution against hackers and snoops by enabling SSL security on your Tumblr Dashboard. Just head over to your Account Settings and flip the switch.

"Any reason I shouldn’t do this?" Nope, not really. It doesn’t change anything about the dashboard, it just encrypts your connection to it. We’ve been using it for weeks and haven’t even noticed. So, yeah, turn it on and forget about it. Easy.

That this isn’t enabled by default shows that Tumblr is interested in the PR of offering security rather than giving enough of a damn to automatically enable SSL across the entire user-space.

(via laughingsquid)


Feb 3, 2014

Copyright © 2014