Tales from the Crypto






         Alun Jones (Security MVP Reconnect) writes about security, cryptography, SSL, PKI, and pretty much anything else that bothers him enough.

Archive for November, 2006

November 28, 2006

Developers are users, too.

Jesper and Steve like to talk about “users just want to see the naked dancing pigs“. What they mean is that when users have selected an action that they want to do, whether it’s looking at a purported picture of a naked celebrity, or getting rich by forwarding email to all of their friends, acquaintances […]

November 24, 2006

Where’s Jesper

Filed under: Uncategorized @ 11:46 pm

  Jesper used to blog all the time. Jesper used to travel the world, speaking and spreading the news about computer security. Jesper has a new blog, but it’s been a long time since he’s put anything there. So, where’s Jesper now? He’s stopped traveling the world, that much I know, because his kids were […]

November 13, 2006

Soon all your privacy problems will be history

Filed under: General Security,Programmer Hubris @ 9:13 am

According to recent research, 49 million adults in the USA have been notified of breaches of data security that have exposed their private information to unauthorised recipients over the past three years. At this rate, shortly we won’t need to worry about privacy and data protection, because everyone’s data will already have been made public. […]

November 7, 2006

ChangePassword versus SetPassword

Writing a piece of code last night, I was struck by the thought that many developers I’ve worked with would not know why I use a ChangePassword function, instead of a SetPassword function. The difference in use is simple – SetPassword requires one password (the new one), whereas ChangePassword requires two passwords (the old one, and […]

November 3, 2006

Changing passwords on a service, part 2

Filed under: General Security @ 9:11 am

In a comment to my earlier article, Scotty (a friend of mine from the mother country) asks: Have you looked at passgen.exe from Jesper and Steve's book which would let you set a different password per machine (great for machines in different pools of risk) as well as making sure it was complex. Good tool. Curiously […]

November 2, 2006

Microsoft gets opener every day

Filed under: Miscellany - not security @ 4:53 pm

Wow – who would have thought that Microsoft and Novell were partnering up to offer not just technical interoperability but licence and legal interoperability between Windows and Linux? Ray Noorda's only been dead a month – is he turning in his grave already? The technical parts of this agreement cover virtualisation – to run Linux […]

What is an MVP?

As a Microsoft MVP (Most Valuable Professional), I’ve occasionally found that people have no idea what that means. Here are some of the suggestions I’ve heard from others: A corporate ‘shill’, paid secretly in order to say good things about Microsoft. An ‘evangelist’ for Microsoft. Someone who’s crazy enough to work for Microsoft on their […]

November 1, 2006

Don’t surf from your dev box either

I’ve always scoffed some at reports of vulnerabilities in Visual Studio. After all, how many ways is a developer likely to get attacked through Visual Studio? Through loading and executing malicious code – don’t fetch code from people you don’t trust, and don’t run code that you don’t review first. Through debugging malicious code – […]

© 2017 Tales from the Crypto   Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs