Re: "Tinge of irony"
Labours policy on encryption: 'For the few not the many'
151 publicly visible posts • joined 24 Aug 2010
>Ignoring dots when registering is a good idea. Doing so for receiving/sending mail however is not.
If you ignore the dots when registering it makes no difference at all whether you ignore it for sending or receiving because there can't be a separate email address at that domain that differs only on punctuation.
I have many rules set up to block parts of this site to make it tolerable for me, such as the masthead, that annoying sticky menu I've never used, all images (yes really), that right hand column, the social buttons etc. To have ublock origin do this I can't whitelist the site so the ads get blocked too.
This has been asked before but not answered: How much revenue do you make if I read roughly a third of the articles you publish and never click on an ad? I'd probably be happy to donate that amount to you and continue reading the site as I want to.
@ adrian 4 "you're suggesting passing the authentication secret over the open phone network"
yes, so what - it's a one time secret. If you manage to eavesdrop on that message somehow, how are you then going to enter it into my browser that requested it?
It's not just a hash of the file. According to the article in ahem the guardian which has significantly more information than this article, it does use Photo DNA whose ' “hash” matching technology made it possible to identify known illegal images even if someone had altered them'
At least soon facebook will have all of the 'necessary hashtags'.
"The university, meanwhile, told FBI investigators it had cost $67,500 to probe and clear up his alleged actions."
I read that as that was only the cost to the university, so nothng to do with FBI salaries etc. So I read the actual pdf: I quote #39
"According to the Uni of Iowa, the IT costs associated with their internal investigation, response to the discovery of the breech (sic) and remedial steps taken to update the Uni security is approx $67,900. This does not include the non-IT costs associated with professors reviewing their grades and updating their exams"
so yeah i call utter BS.
> As far as I know, PureVPN has never claimed not to retain logs
quote "We Do Not monitor user activity nor do we keep any logs.". "PureVPN specifically chose Hong Kong (HK) for its headquarter because there are "No Mandatory Data Retention Laws" in Hong Kong"
etc.
see diceware, it's based around rolling dice to select the words from it's dictionary. www.diceware.com
As suggested by The Intercept. https://theintercept.com/2015/03/26/passphrases-can-memorize-attackers-cant-guess/
"The Diceware method is secure even if an attacker knows that you used Diceware to pick your passphrase, knows how many words are in your passphrase and knows the word list you used. The security of Diceware comes from the huge number of combinations that an attacker must search through even with that knowledge . The Diceware word list contains 7776 words, so if you pick a five-word passphrase, there are 7776 x 7776 x 7776 x 7776 x 7776 combinations. That is over 2**64 (2 to the 64 power or 2.6 X 10**19) possibilities. A six word Diceware passphrase confronts an attacker with 2**77 (2 X 10**23) combinations; seven words 2**90 (1.5 X 10**27)."
Like the mysterious windows 10 update KB4033637 that was released yesterday and doesn't have an entry on the MS website
https://support.microsoft.com/en-my/help/4033637
https://www.computerworld.com/article/3220527/microsoft-windows/undocumented-patch-kb-4033637-pushed-onto-win10-1607-machines.html
The 2 main cashback sites in the uk both have similar schemes whereby you can register your credit/debit card with them and then by using that card for purchases in certain high st retailers you automatically receive a % cashback in your account.
I'm not sure exactly how they get the data but I've never been particularly comfortable with the fact that this is possible. So I presume it must be fairly easy for anyone to get hold of all of your credit card transactions, google included.
Does it actually need GPS or just location services? On android I believe location services have to be enabled in order to use bluetooth because google. That doesn't excuse Bose for slurping data tho.
The play store says the required permissions are:
bind to an accessibility service
view network connections
pair with Bluetooth devices
access Bluetooth settings
full network access
Wow the bill has just 27 lines per page and a giant font (courier why???). Guess his eyesight is failing, maybe it is true that it makes you go blind after all.
From the definition of obscene material it states "The term includes material to which ALL of the following apply". If so the 4th clause thwarts it's application to most things.
(9) OBSCENE MATERIAL. a. The term includes material to which all of the following apply:
1. The average person, applying contemporary community standards, would find, taken as a whole, appeals to the prurient interest.
2. Depicts or describes, in a patently offensive way, sexual conduct or excretory functions.
3. Taken as a whole, lacks serious literary, artistic, political, or scientific value.
4. Facilitates or promotes prostitution, assignation, human trafficking, or sexual cyberharassment.
It can only be detectable if either the communication was using a department issued device or was sent using the departments network.
You seem to be a bit confused talking about message headers and virus checkers. Are you thinking of email, which is not what the article is talking about.
Frmo the paper it starts from a known card number. 60 guesses gets you the expiry date, a further 1000 to get the cvv.
You don't need to guess the whole address "Different websites perform varying levels of verification on the address field’s numerical digits, ranging from verifying just the numerical digits in the postcode (partial match), to the complete numerical digits in postcode plus the door number".
But 291 of the ~400 sites listed don't validate the address anyway so you would be able to use those sites with just the expiry + cvv.
I'm quite glad I'm accidentally with mastercard.
>I don't believe any of us (other than the householders) would have counted towards the viewing stats.
It's unlikely that any of you actually counted towards the viewing figures - do you realise that they are just estimates based on monitoring a few specific households?
http://www.barb.co.uk/about-us/how-we-do-what-we-do/
>I don't believe any of us (other than the householders) would have counted towards the viewing stats.
It's unlikely any of you actually counted towards the viewing figures - do you realise that they are just estimates based on monitoring a few specific households?
http://www.barb.co.uk/about-us/how-we-do-what-we-do/
You can disable the speed dial tiles so you just get the one plus, bookmarks and history. Go to settings/start page and uncheck speed dial layout/show add button. I find that unobtrusive enough personally.
I much prefer vivaldi to chrome and they are the only 2 options I have here at work. sllimjet is blocked so that's a non starter.
Did you try keepass as it seems to fit your criteria?. It runs on unix (under wine), integrates with firefox and chrome (using keefox and chromeipass respectively), supports any cloud storage as it is just an encrypted database file, it does have a BB10 app and KeePassDroid is on the amazon app store.
SMS is an advantage over an authenticator app if you lose your phone. Getting a replacement phone and sim set up is pretty quick and straightforward, however contacting the customer services for each authenticated service to regain access is a pita.
I went through this recently when my phone broke and I no longer had access to the authenticator app, I've switched to SMS now where possible.
re 2. they claim they don't
" Each user has his or her own access and encryption key, and no one else knows what that key is. LogmeOnce’s employees and servers do not have access to your credentials"
I agree with your other points though. And taking a photo adds no more security than any other 2FA, personally using google authenticator or a push notification like google have just introduced is far more convenient.
If they don't have your master password you will have to enter it, so you can't 'choose to no longer type it in' (from the article)
slightly OT... On my phone I recently denied all apps access to the Microphone (running Cyanogen OS). Viewing mail in the gmail app works as normal but while composing a msg I get the following message every 30s or so:
"This app won't work propertly unless you allow Google Play services' request to access the following: - Microphone. To continue, open settings, then Permissions and allow all listed items. [Cancel] [Open Settings]"
wtf??