Having recently conducted a security audit of several free/open source software programs for the Electronic Frontier Foundation, Chris Palmer and Dan Auerbach have published some guidelines for improving security in free/open software:
Avoid giving the user options that could compromise security, in the form of modes, dialogs, preferences, or tweaks of any sort. As security expert Ian Grigg puts it, there is “only one Mode, and it is Secure.” Ask yourself if that checkbox to toggle secure connections is really necessary? When would a user really want to weaken security? To the extent you must allow such user preferences, make sure that the default is always secure.
A leaked demo has bright red and orange marks on ‘harmfully misleading’ tweets
• U.S. State Department blames Russia for cyberattacks that hit neighboring Georgia in October 2019 • By identifying Russia’s digital assaults on neighbors, US hopes to raise awareness of ongoing GRU attacks on US
The Defense Information Systems Agency, which calls itself a combat support agency of the Defense Department on its website, employs 8,000 military and civilian employees. The DIA, which is responsible for secure White House communications, said Social Security numbers and other personal data its network held, was likely compromised, reports Reuters, citing a letter sent […]
It may not rank up there with climate change or personal debt, but confess…isn’t it the worst when you’re trying to put a food container in the fridge, but can’t find the right lid to fit? Hey, not everything has to be a global crisis to be irritating to the core. But still…it’s even more […]
Assembling a truly autonomous smart home is getting closer and closer to reality every day. But for every new smart bulb, thermostat, home security system and appliance we set loose within our walls, there are still probably a half dozen “dumb” items we’d still love to replace. But whether they’re too costly or too big […]
With so many manufacturers out there these days, it’s tough to know who to trust in the ultra-competitive wireless earbuds market. If you’ve never heard of LinearFlux, you may soon. That’s because it’s a company with a stellar pedigree whose co-founders were two of the engineers behind the original success of two audio houses you […]