Collaborate Disseminate
All the other questions I have seen here focus on the security implications of IP addresses. I’m interested about the privacy implications.
In my opinion, static IP addresses for home connections (where you usually don’t need to host any s… Continue reading Privacy implications of static IP addresses (for home connections)
I was reading this question ( How to check if an image file is clean? ) and forest’s answer suggested converting the image to a "trivial pixelmap format, such as PPM". Such a format was considered "simple enough that it woul… Continue reading Are PPM or BMP images safer than JPEGs or PNGs?
I always hear people say "test your backups", but I have no idea how that is done in practice when you have to deal with complex infrastructures.
For personal backups it’s easy to rely on something like checksums, because all you… Continue reading How should backups be tested in large offices?
Background
Often developers and clients need to exchange passwords to be able to access some services. Of course the best option would be to never use someone else’s credentials to log in, and instead create a different account for every u… Continue reading Using Google Docs to share passwords
A website has some bruteforce prevention for logins, and I need to turn that off because it’s buggy and it’s causing problems. It will stay turned off, probably forever, because there are no plans to do any maintenance on that website. It’… Continue reading Locking accounts using the same strong hash in the database
Would it be secure to:
Store all my website cookies (stack sites, webhost, github, web-based email, etc) on a remote server (using an customized open-source VPN or something)
Login to the server with password + 2fa (and maybe have a trust… Continue reading Store cookies for multiple sites on remote server and connect from multiple clients
I (will) have a binary executable file. It’s only permission is user-execute. It cannot be read by user, group, or world. The owner of the file is the Apache user. I don’t want the apache user to be able to read the file, but I do want the… Continue reading Protect password from apache user by making file executable-only
There’s something I don’t understand about signatures in Google Maps APIs.
The documentation says "We strongly recommend that you use both an API key and digital signature, regardless of your usage". In this case we are talking a… Continue reading What’s the purpose of signatures in Google Maps APIs?
What’s the chance of guessing valid credit card data that could be used to make a payment online? To me, it looks like it’s not extremely hard to guess, but I’m not able to calculate the probability. I mean, it’s not like it was designed t… Continue reading Chance of guessing any valid credit card data
It seems to me that there’s some sort of “race condition” when you install a new Linux OS (this applies to every OS, but I’ll restrict this question to Linux only). When you download the OS for a fresh installation, the image is usually ou… Continue reading Update fresh installation of Linux OS