|
Monday, 17 November 2008
If you’re going to offer a secure protocol to your users, don’t do what CSA Australia did, as I indicated in an earlier post.
Read more >>
Monday, 13 October 2008
If you search the web for what people think of the dreaded webform captchas, you’ll see that there are plenty of us who think they largely suck because they irritate the very people they’re supposedly designed to protect.
Read more >>
Monday, 1 September 2008
We’ve known for several years that almost all internet routers which support universal plug and play have some nasty security issues, including the one you probably use at home.
A big problem for home users is that the router manufacturers almost always configure UPNP to be enabled when it ships out of their factory. While I can understand the really old routers shipping in this insecure state, I was very surprised that Virgin would allow their Globersurfer II wireless router to be still configured this badly, as recently as only a few months ago.
But irrespective of who provides your internet service or which make and model router you use, you need to make sure that UPNP is disabled. Otherwise, you’re a sitting duck.
Oh, and if you’re not sure just how UPNP was supposed to benefit mankind, read this article.
Monday, 11 August 2008
This is what happens when you don’t know how to configure the security certificate on your website. The folks over at CSA Australia provide a feedback link, which when clicked, rewards the customer with this:
Read more >>
Monday, 28 July 2008
Got this phishing scam from some knuckleheads in the USA who must have been hoping that (1) I’m a Bank of America customer and (2) that I’m even dumber than they are:
Read more >>
|
