Archive for August, 2006

Ross Anderson’s Security Engineering Now Available For Free Download

// August 31st, 2006 // No Comments » // Security & Privacy

Security EngineeringRoss Anderson’s 2001 magnum opus Security Engineering is now freely available to the public for download.

From the Amazon.com editorial review:

“Gigantically comprehensive and carefully researched, Security Engineering makes it clear just how difficult it is to protect information systems from corruption, eavesdropping, unauthorized use, and general malice. Better, Ross Anderson offers a lot of thoughts on how information can be made more secure (though probably not absolutely secure, at least not forever) with the help of both technologies and management strategies. His work makes fascinating reading and will no doubt inspire considerable doubt–fear is probably a better choice of words–in anyone with information to gather, protect, or make decisions about.”

The book offers some intriguing fodder for security buffs including a chapter on the history of the technologies behind Nuclear Command and Control systems.

It is very comprehensive and touches on a wide array of systems and the security issues relating to each. The nature and quality of the content is such that it will remain timely information for years to come.

Of course if you find it worthwhile, help Ross pay his bills and actually pay for a copy. But it’s great that this valuable resource is now available to a wider audience. Hooray to Ross and Wiley Publishing for making it available for free!

Slick Wordpress Admin Plugin

// August 9th, 2006 // No Comments » // Technology

Ready to spice up your Wordpress administrative interface? Using Firefox or Safari?

Try out the WP Tiger Administration plugin. It’s compatible with WP 1.5-2.0 and works in Firefox and Safari given their support for CSS2 (in IE it automatically reverts to the default admin interface).

This seems to be the best upgrade to the WP Admin panel available. Someday we can all give shuttle a try too.

Rangers August Slide Redux

// August 9th, 2006 // No Comments » // Life

The Rangers have hit a 4-game slide in what looks to be a repeat of last August. It’s a tight division where mediocrity reigns and a 4-game slide can move you from tied for first to tied for last. I also CAN’T BELIEVE they traded Mench, a franchise player the Dallas community loves, probably above all except maybe Michael Young, for a guy that in all likelihood will bolt at the end of the season. Unbelievable.

One More Reason To Hate AOL

// August 9th, 2006 // No Comments » // Security & Privacy

Say No To AOLShort version… AOL released the search logs of over 650,000 users for “research” purposes. Following the almost immediate backlash, they took the site down but not before it was mirrored across the Internet and is still widely available.

In the published data, AOL changed the unique user id to a random number but several media outlets have already been able to discern the identities of individual AOL users by name with very little effort. Others have found credit card numbers and username/password/website combinations, among other sensitive data.

It’s one thing for some goof to take a laptop home and (somehow) lose it. It’s quite another for AOL to release extremely sensitive data into the public domain without permission in an act of willful disregard not only of its customers privacy, but their safety and security as well. This data could easily be used to further the aims of identity thieves, child molesters, and even murders. Thank you AOL.

AOL should be severely punished for this, if not by the authorities, then by the market itself. Boycott AOL. Cancel your subscription today. They’re not worthy of your business. They don’t care about your privacy.

Read more here, here, here, and here.

Edited 8/22 to add: AOL’s CTO has resigned. That article also details the things AOL is doing to address privacy concerns. Let’s hope they do make changes and that those changes prevent the kind of horrendous disclosures discussed in this post.

Edited again on 8/22 to add: More excitement a-brewing….