Browsed by
Month: November 2017

The Amazon Key Security Nightmare

The Amazon Key Security Nightmare

In case you haven’t heard, Amazon recently rolled out “Amazon Key.” This service allows delivery persons to leave packages inside your home. I’m sure I’m largely preaching to the choir here, but I can’t let this one go unanswered. I want to talk about Amazon Key security, and some of the problems it creates.

Complete Privacy & Security Podcast E055

Complete Privacy & Security Podcast E055

Complete Privacy & Security Podcast E055: Privacy Nomads  with Jesse & Cameron, Part II This week Jesse and Cameron update us on their nomad status and give some advice that is valuable to anyone who would like to maintain an official mailing address that is discrete from their physical address.

The Ultimate Security & Privacy Gift Guide

The Ultimate Security & Privacy Gift Guide

I thought I would do something I’ve never done before: write up a privacy gift guide ahead of Black Friday and Cyber Monday. Privacy people are hard to shop for. We don’t use Amazon’s Wish List because it’s creepy. Obviously we won’t tell you over SnapChat and Facebook isn’t going to recommend anything because we don’t use it. Since you probably already know what you want, share this privacy gift guide with someone that doesn’t know what you want! Because,…

Read More Read More

HTTPS Certificate Fingerprinting

HTTPS Certificate Fingerprinting

I’ve talked a lot about HTTPS (and we talked about it in podcast Episode 054), but no one really explains how to make sure your connection is really valid. In some situations I have wanted to look beyond the green padlock icon. This concern has grow with reports of various public Wi-Fi services intentionally breaking HTTPS connections. Hardware manufacturers have shipped devices with what amounts to pre-installed malware for the same purpose. I’ve written about this before but I thought…

Read More Read More

Operational-Security Official URL Update

Operational-Security Official URL Update

This is just a quick announcement to say that the URL for what I have been calling “Operational-Security.com” is officially https://operational-security.com. I am attempting to consolidate my rather confusing set of URLs, and lower my own cost by reducing the number of HTTPS certificates and domains I maintain. Unfortunately this is going to create a bit of headache for some of you. If you have linked to blog posts at “blog.yourultimatesecurity.guide…” (or added them as bookmarks or favorites) you will…

Read More Read More