miniblog.

← Back to all posts
Jun 23, 2019 at 13:10
Friday's xkcd is blunt but fair: it's very hard to secure any part of a modern computer stack, and we depend on all of it:
xkcd: Stack

Related Posts

Sep 26, 2024 at 03:56
I'm intrigued to see that Google has quantified that new code is generally buggier and less secure than code that has existed in your codebase for longer:
Google Online Security Blog: Eliminating Memory Safety Vulnerabilities at the Source
Feb 13, 2022 at 08:32
What's your favourite file checksum when you don't need cryptographic strength? md5sum is convenient (it's installed on most systems), but it was originally intended to be secure. I just want a fast content check. (Or is sha256sum sufficiently optimised that it doesn't matter?)
Nov 6, 2020 at 20:01
SMS 2-factor authentication isn't super secure because it's too easy to call a phone provider and do a SIM swap. It seems like a dedicated smartphone app is significantly better here? It's just as convenient for the user, but harder to compromise.