Security
7 online blunders
7 online blunders, by Consumer Reports.
a summary
Assuming your security software is protecting you. Most people don’t keep their security software updated, but expect that it will continue to do the same job as when they got it.
Accessing a financial account (or consumer website account) via a link embedded in your email. With the number of [...]
Additional security to Wordpress
Browsing around for security tips (trying to work out an issue on my work blog), I came across:
http://boren.nu/archives/2008/07/14/ssl-and-cookies-in-wordpress-26/
define(’AUTH_KEY’, ‘put your unique phrase here’);
define(’SECURE_AUTH_KEY’, ‘put your unique phrase here’);
define(’LOGGED_IN_KEY’, ‘put your unique phrase here’);
These three keys increase the security of your browser cookies, making wordpress more secure to normal users. These keys are only useful if [...]
Don’t be a Victim of DNS Security Holes
Since DNS cache poisoning attacks are far beyond my normal realm of responsibility, it’s hard for me to really talk about the topic. I did make a post about it on my work blog a few days ago, but only because Microsoft released a patch for Windows DNS servers [MS08-037] and Nortel commented on it’s applicability [...]
Perfect Paper Passwords
I’m still trying to decide how these can best be used for web passwords to banking, credit cards, etc. But this is one of the niftiest cryptography ideas I’ve seen this year.
Almost without exception, today’s Internet users prove their identity online using a fixed account name and password. In the past, this simple system provided sufficient [...]
