An excellent and informing interview with the founder of the Lavabit email service, who was recently involved in a legal case with the FBI, who attempted to force him to hand over SSL encryption keys. This was of course the email service used by Edward Snowden, so attracted a lot of attention. There's some really … Continue reading Interesting Interview With Ladar Levison of Lavabit
There's a new piece of ransomware in the wild, called Cryptolocker. It's a nasty piece of software that uses public/private keypairs to background encrypt all your documents and files, and then helpfully let you know it has done it. Then - you will be asked to pay $300/€300 to unlock your files. If you don't, … Continue reading Cryptolocker – Seriously Problematic Ransomware
Simple Steps to Use Yum Rollback on Centos / RHEL 5 Some nice instructions on a simple backup/rollback technique for packages on Centos / RHEL 5. This can be accomplished even more easily in newer versions of yum, such as on Centos / RHEL 6, which the 'yum history' command. There's a nice undo feature … Continue reading Simple Steps to Use Yum Rollback on Centos / RHEL 5
This is an excellent (albeit long) talk on DevOps, and where it came from. Some of the systems theory stuff in here, which is rarely covered by computing enthusiasts is illuminating and extremely helpful. If you've wondered why agile doesn't work in operations, or why there's such a counter-productive feedback loop between developing a deploying … Continue reading Interesting Talk on DevOps
A good talk that covers many of the first stages of how to start automating your servers.
Distruptive technologies ocassionally come along which can make a big difference in computing. Something in the early days which I heard about last week was the SQRL authentication proposal by Steve Gibson. This proposal aims to address the extremely big problem of user and password authentication across the internet. This is a huge and annoying … Continue reading SQRL (Squirrel) Authentication – Bye bye usernames and passwords?
Tomorrow is that time of year again, when hundreds of thousands of people spend hours pressing their F5 key, in an often futile attempt to try to book Glastonbury Festival tickets. Although I have been successful the last couple of years anyway, this year I had the opportunity to do a bit of investigation beforehand, … Continue reading Examining the Glastonbury Ticket Sales Website
Do you have an Android phone? Some interesting news I read this week was that an innocuous (on by default) setting on Android phones can save your Wifi passwords on Google's servers. It also backs up all your app settings, bookmarks and so on. This isn't that worrying - it could be considered a useful … Continue reading Google’s Password Storage Database
You can increase disk sizes in vmware guests whilst they are running. This is supported, but Linux will not see the new size of the disk until it reboots. There is a way around this (assuming here we are using LVM disks): 1. Increase the disk size in the vmware settings. 2. Logon as root … Continue reading Increasing VMWare Disk Sizes in Linux Without Rebooting
I found some interesting old news, back from 1999 that someone posted a link to in the SecurityNow newsgroups. I've recently started listening to this podcast - it's a brilliant way to keep up with computer security news, and I feel a lot more informed having started to listen. http://www.heise.de/tp/artikel/5/5263/1.html http://www.heise.de/tp/artikel/2/2898/1.html The articles were to … Continue reading Security Breaches From The Sands of Time