
The entirely predictable problems with the Vulnonym naming scheme
An automated naming scheme intended to rid the security research field of “sensational names” predictably creates sensational, ambiguous, and suggestive names.
An automated naming scheme intended to rid the security research field of “sensational names” predictably creates sensational, ambiguous, and suggestive names.
一个配置错误了TeamViewer RPM回购sitory vulnerable to an attacker-in-the-middle substituting TeamViewer with its own GPG keys and software.
双因素身份验证要求用户无限期地承诺存储密码。yabo88软件下载流行的应用程序缺乏备份和数据传输这些秘密的工具。
计划您的密码管理器停止工作。备份您的密码管理器更难听到它。
systemd.
directivesOpenSMTPD最近具有关键的远程执行代码执行漏洞。我看如何利用Systemd-Service安全指令限制影响。
Last week was a busy week for email issues. Here’s what happened and why you got an empty blog newsletter this week.
systemd.
service sandboxing and security hardening 101Systemd-Analyze Security命令为您的Systemd服务单元提供自动安全额定值。这是安全硬化的一个很好的起点。
FlatPak与Snap提供的孤立沙箱中运行的Firefox浏览器的功能,安全性,性能和限制的比较。
window.open()
features从您的网站打开的Windows可以将“打开”选项卡重定向到新目的地。缓解窗口窗口。()尺寸和定位等功能。
从防火墙迁移并开始使用简单的防火墙(UFW)进行快速教程。
我的老化PC的处理器不支持默认情况下启用新的Windows 10安全功能,导致它变得缓慢而不稳定。
Feian Multipass FIDO安全密钥的召回演示了为什么您始终应该使用来自不同供应商的多个安全性密钥产品。
A case study in how timely Firefox derived web browsers ship critical security updates.
VPN提供商是良好的广告商,也支付了良好的钱来使甚至是[以前]信誉良好的科技媒体网站“推荐”他们的服务。
对面向PGP的电子邮件提供商ProtonMail VS Mailbox.org的比较审查。同一服务的巨大价格差异。
Here are 6 services you can report malware websites and phishing emails to help make the internet a safer place for everyone.
安全的App-Sandboxing使Seav通过FlatPak分发,用于Linux比MacOS和Windows 10更安全的游戏环境。
Any HTTP Content-Security-Policy blocks the default
Ctrl blog was inaccessible in Turkey for five days as the country blocks the BunnyCDN content delivery network.
Windows 10安全功能会阻止WebP Image文件加载Microsoft Edge和现代应用程序。
A misapplied DNS CAA record blocked Certbot from obtaining a Let’s Encrypt certificate for my domain name.
How to use U2F security keys with Firefox and Google’s Advanced Account Protection.
Resolve a common DNS over TLS configuration mistake in the Unbound DNS server that makes you vulnerable to attacker-in-the-middle resolver interceptions.
联想Wi-Fi安全性发送有关您的设备和网络的信息,它加入ISReali公司,称为Coronet Coneber Security。但它有什么好处吗?
Do affiliate commissions make a difference in how PCMag rank VPN providers?
Many VPNs require you to install their root certificates to use their service. This also enables them to intercept your encrypted web traffic.
Windows Settings应用程序中的错误导致使用IKEv2 EAP身份验证配置文件的VPN连接时出现问题。
我在周期审查期间找到了vilfo vpn路由器的几个隐私和安全问题。
这就是为什么我使用LastPass停止并将所有密码和注释移动到开源位点密码管理器。
LastPass密码管理器已停止对Android最流行的扩展的一个Firefox的支持。yabo88软件下载
Firefox and Safari already integrate with the Google Safe Browsing fraud/malware protection service. Should they also adopt its new bad-ads blocking system?
如何更改BitLocker设备加密预启动环境中使用的语言和键盘布局。
调整CentOS和Fedora中的默认SELInux策略,无法从OCSP装订TLS证书中阻止Apache Httpd Server。
两个受欢yabo88软件下载迎的VPS提供商不再修改其Fedora图像默认禁用SELinux安全功能。
采取一些预防措施,具有备份计划,您可以将Windows分区携带加密,并启用安全启动。
The Lenovo Companion app is supposed to keep your device’s drivers and firmware up-to-date. However, it won’t update your Lenovo PC’s TPM firmware.
Twitter-to-email-newsletter service Topical exposes its users’ subscriptions and interests through poor security practices.
无论您是否为您的TP-Link产品获得更新的驱动程序,也不依赖于您从中检查的国家。
在HTTPS证书过期之前,新的无需服务服务会发送电子邮件通知。
Protect your WordPress install against brute-force password guessing with SSHGuard.
New features and services in SSH brute-force protection utility SSHGuard version 2.1.
Spideroak一个备份服务优于客户端软件。良好的安全和隐私保护,但很难使用。
SSLPing可以关注TLS证书的健康,并在他们过期之前通过电子邮件发送给您。
Report Windows SmartScreen false-positives to Microsoft when the security suite gets your software wrong.
让我们加密已经让它真的很容易获得TLS证书。以下是如何阻止服务为域发出证书。
我在kmail中发现了一种安全漏洞(CVE-2017-9604),同时尝试延迟发送PGP加密的私人电子邮件。
Set up unattended auto-updates on Fedora Server or Workstation using dnf-automattic.
当他们不再接收安全更新时,请停止使用旧IOS设备。迄今为止,IOS 9.3.5有超过50个已知的安全问题!
我的网络路由器上的“安全功能”开始通过Steam阻止所有下载。
您如何知道设备将如何接收软件更新?清楚地标记的包装到期日期可能是答案。
A deep look at the ASUSWRT router firmware.
为域添加DNS CAA记录,以阻止未经授权的证书颁发机构(CAS)为您的域名发出证书。
配置Firefox每天更频繁地检查扩展更新。
Protect your Fedora/CentOS Linux-system against SSH brute-force credential-guessing with SSHGuard and FirewallD.
New features and services in SSH brute-force protection utility SSHGuard version 2.0.
Learn how to log in to and take control of Windows 10’s new SSH Server.
在Fedora安装上运行定期恶意软件扫描所需的所有步骤。推荐用于Fedora Server Setups!
所有领先的Web浏览器都保护您免受已知用于分发恶意软件的Web欺诈和网站。您不会使用较小的浏览器获得此保护。
Windows备份本身并不支持加密备份。但是,您仍然可以使用Windows 10中的内置工具获取加密备份。
IPv6-capable websites can break the website security information displayed in the Netcraft anti-phishing toolbar for Firefox and Chrome.
Tutorial demonstrating how to validate code signing certificate signatures on macOS updates and other Apple software installers.
流行的Syabo88软件下载SH Server Brute-Force登录猜测保护实用程序Fail2Ban最终添加了IPv6支持。
Protect your WordPress installation against bots probing for known WordPress core and plugin security vulnerabilities.
403 Forbidden
请求Fail2Ban.Protect yourself against repeated users and bots who don’t get the hint the first couple of times your web server responds with HTTP 403 Forbidden.
通过更改远离默认的SSH端口号,减少Brute-Force Password猜测和脚本攻击在Fedora服务器上运行的SSH服务。
How needs a Tor-enabled Wi-Fi access-point, anyway?
我的早期体验来自让我们加密的HTTPS证书。
Patreon leaked customer email addresses and Bitcoin extortion spammers got hold of the leaked database.
Grindr doesn’t use HTTPS-encryption allowing network operators and attacker-in-the-middle (AITM) attackers to intercept private pics in the app.
Windows 10 introduces a new feature that freely shares all your Wi-Fi passwords with your Outlook, Skype, and Facebook contacts.
Microsoft被安全社区删除了,因为在Windows中默认情况下无法部署防火墙。为什么Apple产品没有给出同样的审查?
An Android competitor has much better security and privacy tools than the original Android from Google.
I’ve re-reviewed the TLS configurations of Norwegian banks in light of the attention my last review got.
Windows has become your password manager, but it also syncs all your credentials to Microsoft. Should you trust it with the keys to your digital kingdom?
您不应该使用Windows管理帐户进行日常使用。设置一个基本和一个管理员帐户以提高安全性。
I’ve reviewed the TLS configuration security of Norwegian banks. Many don’t follow best security practices.