They say that this wireless security system might now be breached with relative ease by a malicious attack on a network. They suggest that it is now a matter of urgency that security experts and programmers work together to remove the vulnerabilities in WPA2
it is the de-authentication step in the wireless setup that represents a much more accessible entry point for an intruder with the appropriate hacking tools. As part of their purported security protocols routers using WPA2 must reconnect and re-authenticate devices periodically and share a new key each time.
In the meantime, users should continue to use the strongest encryption protocol available with the most complex password and to limit access to known devices via MAC address.
http://sciencespot.co.uk/wpa2-wireless-security-cracked.html
-
they allowed "file://" to be fetched from their servers when they should have restricted it to "http(s)://"
- they were using servers that were part of a network to do some private stuff, didn't filter those ips, people on the same network could perform those tasks.
http://engineering.prezi.com/blog/2014/03/24/prezi-got-pwned-a-tale-of-responsible-disclosure/
...At least for now.
This shows how unnecessary encrypting is sometimes. Some people like to encrypt and encrypt everything, and don't consider a solution "usable" if it not fully protected.
I'd argue that twitter has always been a very "public" and "exhibitionist" kind of websites where the private messages have never been a core feature (and it's actually not a really well done message system) and no user is obviously going to use it for "serious" matters. So why spend time encrypting it ?
http://www.theverge.com/2014/3/19/5523656/twitter-gives-up-on-encrypting-direct-messages-at-least-for-now
I have two invites for the new IDE by github. I can't try it because I don't own a mac and there are no versions for windows at the moment (not even linux). Weird, but eh, if you own a mac and want an invite just ask me in the comments !
https://atom.io/
https://twitter.com/gavinandresen/status/441547758827474946
I won't link to the article because it's just a plain DOX and way too creepy for my blog, but the creator of bitcoin has been found.
Great lecture from Matt Whitlock, the video's quality is a bit off but the talk is really easy to understand and nicely paced.
And you can tell right away that he's a great educator: "I'll explain first why we use ECC, because in general I don't really understand things when I don't know how they're important" (not the exact words but you get the idea).
Monetize without ads
This ingenious website proposes to make your users mine through a javascript script. It doesn't seem to be heavy, so pretty discreet, and it also doesn't seem to work yet. But the idea is pretty cool!
Check it out here: http://tidbit.co.in
You liked dogecoin? Well now there is Nyan Coin (yes with the nyancat!)
here it is : http://nyancoin.org/
