Raise your hand if you downloaded Google’s Chrome browser. Now put it down before someone gives you funny looks.
Category Archive for 'Security'
The importance of NOT giving out PII
Posted in Security on Aug 18th, 2008
After reading the title, I’m sure you are curious as to what PII is. Or maybe you know already and just want to get to the rest of the post. Either way, PII is short for Personally Identifiable Information. Things like your Social Security Number, email address, driver’s license number, and yes, even phone number [...]
Sun needs to revise their update strategies
Posted in Security on Aug 17th, 2008
As the creator of the Java programming language, Sun is responsible for maintaining updates to the language and the interpreter and compiler. However, their current update strategy leaves customers at risk even after they have updated.
What’s Same Origin Policy?
Posted in Security on Aug 15th, 2008
phpBB.com recently started a phpBB Blog and one of the posts is by a developer explaining some of the garbage reports they have to put up with.
Strong passwords? Not here.
Posted in Security on Aug 4th, 2008
People hopefully know by now that having a strong password is a good thing. But even if you try to have a strong password, the website may not allow you to.
Follow the bouncing WHOIS - Part IV
Posted in Security on Jul 19th, 2008
I know, you thought I was done. The scary part? I used publicly available information to do it. WHOIS data, search engines and a little bit of common sense were all that it took to unravel this web of deceit. Let this be a warning to users: If you feel uncomfortable about your webhost, it [...]
Follow the bouncing WHOIS - Part III
Posted in Security on Jul 17th, 2008
In the previous two installments, I’ve shown questionable search engine techniques to raise one’s standing, and ties from supposedly legitimate companies to very questionable companies, employing SPAM text, JavaScript encoding, and other eyebrow-raising techniques.
Follow the bouncing WHOIS - Part II
Posted in Security on Jul 15th, 2008
In my previous post in this series, I started on outlining connecting several pay-for and for-free webhosts and showing that they are actually the same company. In the second part, I will continue that, and show how they are trying to trick Google and other search engines.
Follow the bouncing WHOIS - Part I
Posted in Security on Jul 13th, 2008
This is an ode to Tom Liston. A while ago, I did some research in to Bluehost and uncovered some questionable relationships and assets they hold, or held at the time.
I’m a huge fan of getting rid of SSN’s for use as identifiers. I’ve talked about problems I’ve had before with SSN’s, but this latest round bothers me. Again.