From the category archives:

Security

Antivirus Software To Become Mandatory?

1 July 2010

A new report is recommending that vulnerable computers be barred from accessing the internet – but the idea risks creating more problems than it solves.

Read the full post

Add ?NoCleanFeed or &NoCleanFeed to Blacklisted URLs to Bypass Mandatory Australian Internet Censorship

20 December 2009

Depending on the technology, you can bypass the proposed Australian mandatory filter by changing your DNS servers, using an encrypted VPN service, or installing Tor. But these workarounds can take up to 60 seconds to set up, and can slow your access somewhat. Instead, you can bypass the filter by simply adding ?NoCleanFeed or &NoCleanFeed to the end of the blacklisted URL.

Read the full post

How to Delete Flash Cookies Conveniently

12 August 2009

A couple of days ago, Wired reported on the questionable use of Flash cookies revealed by a UC Berkley study. Many users are unaware that Adobe’s popular Flash plugin stores its own cookies separately from normal browser cookies. Here’s how to get rid of them.

Read the full post

TrueCrypt Volumes Still Undetectable

1 May 2009

Last week, Forensic Innovations Inc announced on its blog that it has a tool that can identify headerless encrypted data, such as TrueCrypt volumes. For the tool to work, it would have to be able to distinguish between random or pseudo-random data and the output of ciphers like AES. I ran a quick test to see whether it could. It can’t.

Read the full post

Classification Board Website Finally Back Online

24 April 2009

On 26 March 2009, the Classification Board website was hacked, and the text on the homepage was replaced. Today, nearly a full month after the site was hacked, an overhauled version of the site is finally back online.

Read the full post

Force CommSec to Use HTTPS with NoScript

2 April 2009

I previously wrote about how CommSec uses a non-SSL frameset to deliver sensitive financial data. It turns out that you can use the NoScript add-on for Firefox to force CommSec to use HTTPS.

Read the full post

Classification Board Website Hacked

26 March 2009

Three versions of the ACMA blacklist have leaked to Wikileaks. Then it was revealed that anyone could extract the blacklist from the Integard filter in a 30-second hack. Now the Classification Board website has been hacked. Wouldn’t it have been ironic had the hackers elected to post the leaked ACMA blacklist on the site and then report the site to ACMA?

Read the full post

Commonwealth Insecurity: Banking over HTTP

20 March 2009

CommSec uses a non-SSL frameset to deliver sensitive financial data. You never know (without some digging) whether the content frame is at the www.comsec.com.au domain and whether it’s using SSL, so you’ll never know whether it’s safe to enter your details there.

Read the full post