Blog Archives

Fingerprints are NOT passwords!

The three basic rules for password security are: Never write your password down. Someone might find your note. Never use the same password for different services. Otherwise you give the operators of one service access to the other. Change your

Posted in Security

The password dilemma with client/server applications.

I should probably mention this, even though it’s not actually worth mentioning: Raccoon v4.1.6 reverts to the Raccoon v3.x policy for storing credentials. That is, your password will be stored on disk again.

Posted in Security

Do not use fingerprint sensors! Period!

I had this discussion with a friend the other day, who is now the proud owner of a fingerprint protected front door and smartphone, but since fingerprint scanners are creeping into more and more security appliances, it is worth repeating

Posted in Security

Catch-22: When Raccoon suddenly stops working…

Back in the v3 days, I used to have this idiot discussion about handling passwords every other week. Some weisenheimer would notice that Raccoon only prompts for a password during setup. Then, dug through the config file, just to find

Posted in Security

Can someone explain to me why we are still required to sign our Android apps?

With Android O, we are well into the second half of the alphabet (no pun intended) and the Android packagemanager still requires apps to be signed. Why exactly?!

Posted in Android, Rants, Security

Explaining “privacy” to the layman (in easy terms)

Andrew has a dog named Chomper. Andrew isn’t as stupid as to use his dogs name anywhere as the answer to a password recovery question, but he doesn’t see why he should keep the name secret either. After all, he

Posted in Rants, Security

Interested in buying a smartphone with a fingerprint sensor?

Fingerprint sensors are broken by design. There’s no way of denying it. You leave your prints on pretty much every smooth surface you touch (i.e. the back of your phone) and you cannot change them, after they get lifted. Compare

Posted in Persepective, Security

Anyone still using Blackberry? Well, stop it!

Quite a world view, Blackberry’s CEO John Chen has there: BLACKBERRY CEO John Chen has said he is “disturbed” by Apple’s tough approach to encryption and user privacy, warning that the firm’s attitude is harmful to society. […] Chen remarked:

Posted in Rants, Security

Antivirus software is snake oil!

Let’s say you download a file you do not trust. What do you do? Well, you run it through an anti virus scanner to see if it is safe, of course! Question: why do you trust the anti virus scanner?

Posted in Security

*Poof* your GMail has been disabled

Read in the voice of Gandalf, quoting the engravings of the ring to Frodo: One Google Account for everything Google So it is written on their sign-up page. And an alluring promise it is. The song of praise for the

Posted in Security