Aug 23 2013
Chris Williams over at El Reg posted a nice article about the kind of crypto best practice you need to follow if you care about privacy. The article questions the wisdom of using David Miranda as what Williams calls a “data mule” to carry physical electronic media (possibly) containing sensitive data through Heathrow and goes …
Permanent link to this article: https://baldric.net/2013/08/23/untrusted-dod-certificate/
Aug 22 2013
A couple of weeks ago I noted that the release of tails 0.20 seemed to be popular – at least if the traffic on my mirrors was anything to go by. The statistics published by the Tor project itself show an interesting rise in (probable) Tor usage since June. The graphic shows that the number …
Permanent link to this article: https://baldric.net/2013/08/22/tor-usage-on-the-rise/
Aug 20 2013
The BBC has today commented on the Guardian story about David Miranda’s detention for nearly nine hours at Heathrow under Schedule 7 of the UK Terrorism Act 2000. The BBC’s on-line report ends with a web feedback form asking: Have you been detained under schedule 7 of the Terrorism Act 2000 at a British airport, …
Permanent link to this article: https://baldric.net/2013/08/20/aunty-doesnt-get-it/
Aug 12 2013
I was browsing the RevK’s blog (originally brought to my attention by David) this morning and came across this gem. It would seem that some UK households have been receiving unsolicited pornographic DVDs through the post. As the RevK says: Well, obviously the Royal Mail need a default opt-in adult content filtering in place for …
Permanent link to this article: https://baldric.net/2013/08/12/porn-over-postie/
Aug 10 2013
The Tor network does not just provide anonymous internet access, it also provides for so-called hidden services. These services are not visible outside the Tor network and are only reachable over Tor. The servers are given Tor specific addresses of the form “xyz123.onion” (actually, the addresses are a little more complicated than that because the …
Permanent link to this article: https://baldric.net/2013/08/10/tor-users-under-attack/
Aug 09 2013
I run my own mail server for a number of reasons. And I rarely regret that decision. However, there have been occasions in the past when relying on a single mail provider (even when that provider is myself) has proven problematic. The first problem arose several years ago when the ISP which I use for …
Permanent link to this article: https://baldric.net/2013/08/09/lavabit-dead/
Jul 28 2013
John Naughton has an interesting column in his “networker” series in today’s Observer. In it he laments the fact that the majority of the world’s mainstream media seem more intent on reporting on Snowden the man than on what Snowden has revealed. He starts: “Repeat after me: Edward Snowden is not the story. The story …
Permanent link to this article: https://baldric.net/2013/07/28/repeat-after-me-snowden-is-not-the-story/
Jul 26 2013
I am in the process of changing passwords on a bunch of different systems/applications and have been pondering my algorithms, so to speak. Like my friend David, I have an internal model of varying password schemes which I can use in different places. This means that I can happily pick a password for a low …
Permanent link to this article: https://baldric.net/2013/07/26/soldier-available-cross-magnet/
Jul 26 2013
I have written several times in the past about the tedious crud which hits my blog spam filters. Of late I have seen an increase in spam which looks, at first sight, plausible comment, but on closer inspection turns out to have the usual links to sites flogging cheap copies of western luxury goods. A …
Permanent link to this article: https://baldric.net/2013/07/26/how-not-to-hide/
Jul 23 2013
Our dear PM seems to have caved in to the obsessions of mumsnet and the daily mail. As someone in the grauniad pointed out today, at least we can be sure that Lynton Crosby has no connections to the pornography industry. Here’s one of my favourites….. It is interesting that whilst Dave thinks pornography on …
Permanent link to this article: https://baldric.net/2013/07/23/this-one-is-for-dave/
Jul 21 2013
Right now (21.00 today), the ubuntu forums site says it is “down for maintenance”. It appears to have been down since yesterday. The site reports: There has been a security breach on the Ubuntu Forums. The Canonical IS team is working hard as we speak to restore normal operations. This page will be updated regularly …
Permanent link to this article: https://baldric.net/2013/07/21/ubuntu-forums-compromised/
Jul 17 2013
I suppose it was inevitable that the Snowden revelations would lead to greater interest in privacy and anonymity. I applaud that. I suppose it was also inevitable that there would be a rash of commercial products emerging from both “entrepreneurs” and the more established “security” companies to take advantage of that increased interest. That, I …
Permanent link to this article: https://baldric.net/2013/07/17/save-your-money-just-use-tails/
Jul 15 2013
I have been a Nokia fan for many years. Like many people, I guess, my first mobile phone was made by Nokia. I have certainly owned more Nokia mobiles than those from any other single company. One of my favourite mobiles (which I still own as a backup) is the 6500 slide. I also still …
Permanent link to this article: https://baldric.net/2013/07/15/nokia-lumia-1020/
Jul 15 2013
For those of you unsure of what might leak where and when using tor and/or https to protect your browsing, there is a useful interactive graphic on the EFF site. As EFF point out, the potentially visible data includes: the site you are visiting, your username and password, the data you are transmitting, your IP …
Permanent link to this article: https://baldric.net/2013/07/15/tor-and-https-at-eff/
Jul 14 2013
Back in December 2011 Roger Dingledine and Jacob Applebaum of the torproject gave a talk at the 28th Chaos Communication Congress titled “How governments have tried to block Tor“. That talk focused on the arms race between privacy campaigners and technologists working on tor and the actions of oppressive governments. The presentation gave many examples …
Permanent link to this article: https://baldric.net/2013/07/14/base64-gets-past-omani-deep-packet-inspection/
Jul 09 2013
Today I stumbled across what appears to be a Vietnamese search engine called coccoc. The front page shows the typical search box as pioneered by google, but underneath that box is some text which seems to comprise text terms, mathematical formulae and (perhaps) chemical symbols. Sure enough, passing that page through microsoft’s on-line translator at …
Permanent link to this article: https://baldric.net/2013/07/09/bizarre-searches/
Jun 24 2013
This is lovely. On a whim I have just checked the DNS for the Guardian. I got the following results: MX records: guardian.co.uk mail exchanger = 30 guardian.co.uk.s200b1.psmtp.com. guardian.co.uk mail exchanger = 40 guardian.co.uk.s200b2.psmtp.com. guardian.co.uk mail exchanger = 10 guardian.co.uk.s200a1.psmtp.com. guardian.co.uk mail exchanger = 20 guardian.co.uk.s200a2.psmtp.com. So – all four MX records point to SMTP …
Permanent link to this article: https://baldric.net/2013/06/24/more-irony/
Jun 24 2013
There is a wonderful advert in today’s Guardian. Most of page 6 is taken up with a Microsoft advert saying: “Aston Martin is now on Office 365 – your complete office in the cloud.” Right. An advert for a cloud based office suite from a major US software supplier. Tough sell. Especially in the Guardian.
Permanent link to this article: https://baldric.net/2013/06/24/ironic-advert/
Jun 24 2013
About 18 months ago I posted a note objecting to facebook’s apparent new policy of insisting that its users hand over a mobile phone number in order to continue using its “service”. In that post I included a png image which I labelled “facebook-login.png”. Oddly enough I note that over the past two weeks my …
Permanent link to this article: https://baldric.net/2013/06/24/facebook-login-searches/
Jun 17 2013
This post has nothing whatsoever to do with the usual topics I cover here, but this is my blog so hey I can write what I like. My family has a proud tradition of working in the UK public sector. Despite multiple machinery of government changes by administrations of both major political colours thoughout my …
Permanent link to this article: https://baldric.net/2013/06/17/please-sign-here/
Jun 17 2013
I normally get around 1000 to 1300 hits a day (or 32,000 to 40,000 per month) on trivia. Not a huge hit rate, but consistent and on a slight upward trend over the past year. Today I have seen over double that – most of it this morning. Between 05.30 and 07.00 local time my …
Permanent link to this article: https://baldric.net/2013/06/17/trivial-traffic-bump/
Jun 16 2013
In all the noise on the ‘net about the alleged NSA PRISM program, this new site offers an amusing, but nonetheless useful, list of free alternatives to proprietary software. In part the site sort of misses the point about PRISM, but it is still good to see someone taking the time to point out that …
Permanent link to this article: https://baldric.net/2013/06/16/prism-opt-out/
Jun 15 2013
The revelations of the past week or so have been interesting to me more for what they haven’t said, than what they have. There are a few points arising from Snowden’s story which puzzle me and which don’t seem to have been addressed by the mainstream media – at least not the ones I read. …
Permanent link to this article: https://baldric.net/2013/06/15/edward-snowden/
Jun 13 2013
At DigitalOcean – or so says Netcraft in its latest write up on their astonishingly fast rise over the last six months. Apparently, in December 2012, DigitalOcean had just over 100 web-facing computers whilst in June 2013, Netcraft found more than 7,000. That is some growth. But I’m not surprised. I make no apology for …
Permanent link to this article: https://baldric.net/2013/06/13/microsoft-windows-is-conspicuous-by-its-absence/