I used to use Truecrypt to encrypt little enclosures so I wouldn't have to worry about my files so much when I, say, put them on a USB stick or backed them up to the cloud. There was a whole... thing with Truecrypt and now it's hard to say if I should use it anymore. Is there another program that's going to work well for this purpose? [more inside]
Recently I noticed a lot of controversy about whether Truecrypt is secure or not. It looks like their webpage
is raising concerns about it, even to the point of suggesting that people migrate their data away from it. Arstechnica
are following the story.
What's going on? Might this be a hoax? Are truecrypt encrypted flashdrives not safe? If not, what level of security do they provide, if any? What would be a good alternative if we are to migrate away as quickly as possible?
At work, I can digitally sign and encrypt emails using digital certificates on my ID (and a card reader attached to my laptop). It integrates decently with Outlook and Acrobat. It's 2014. What are my PKI options for personal use? [more inside]
I've only worked in a small business (15-20 employees) since I got out of school, and I've handled the technological necessities since I started because nobody else could. I've handled things on an as-needed basis: troubleshooting problems, setting up new computers, maintaining an iron grip on software installations, setting up the network and administering simple network devices, etc. However, I'm completely self-taught, and I have no idea if my hacked-together system looks anything like a properly-implemented corporate IT system. So I want to know what one looks like. Specifically, I'd like to know if there are any resources I can check out on my own that paint the picture of what I should be trying to achieve. NOTE: I'm NOT averse to hiring an outside IT firm or consultant to help with specification and implementation. However, I don't want to be at the mercy of a firm's "knowledge" and my own ignorance; you can waste a lot of money that way, regardless of scenario. [more inside]
I know there are a variety of options out there, but I'm having a hard time sifting through the information myself. [more inside]
. [more inside]
Is there any software that allows for encryption of home directories in OSX, a la original FileVault? [more inside]
The best and simplest way to communicate between a smallish number of (known) people, on a few different devices, with encryption? [more inside]
How can I electronically send confidential/private information to other people as conveniently but securely as possible? [more inside]
When uploading my files to major cloud services (Microsoft SkyDrive, Google Docs and Google Picasaweb), are they automatically encrypted before
they leave my computer? [more inside]
I'm looking for a forum where I can ask questions about networking, security, coding, operating systems, web design, etc. There are many of these out there, but I'd like to find a single community which covers all these topics more or less equally (so it isn't a Linux forum with a small section on BSD, or a coding forum with a small section on networking). I'd like it to be the sort of forum where users stay around for several years as they learn and contribute at different levels, with high literacy and education-to-spam levels. Could I have your recommendations please?
If I wanted banks or companies like LastPass to hire me to be on their security team to make systems safer and to block out hackers, what websites/books/resources should I dive into to go from n00b to pr0 ?? [more inside]
Need some guidance on message-digest based password generation algorithms. [more inside]
How should a business that's about security set up its own secure communications? [more inside]
How safe are my passwords? [more inside]
How to I compute safely in dangerous places? Looking for advice on hiding data, protecting accounts, and securing connections. [more inside]
OK, so my new Mac
will arrive next week. Can power users fill me in on best practices for setting it up? [more inside]
Does SSL protect information even if the wi-fi connection is unsecured? [more inside]
I have a shiny new 4 GB USB drive, and I want to secure the information on it (bank info, passwords, etc). What's the best (free) way to do this? [more inside]
I occasionally need to email PDFs and Word docs that contain confidential information. My clients claim their email is "secure" and don't see the need for any encryption or any approach other than me emailing them the files. What can I do? [more inside]
How do I secure my backup hard drive that I copy my computer's content onto? [more inside]
Am I being overly zealous about "proper SSL implementation?" [more inside]
I need help with wifi basics - routers, security, encryption etc. [more inside]
Looking for Windows Mobile 6 security software for a phone running Windows Mobile Professional. Especially looking for something that will auto-encrypt or auto-delete PIM databases after a number of incorrect password attempts. [more inside]
General network and computer security: keyservers, PGP/GPG, encryption, etc...book/instructional recommendations? [more inside]
How long will it take to do a 7 pass US DoD 5220 Compliant data wipe on a 120 GB Hard Drive? [more inside]
Is there any simple way to encrypt the information in a web form and deliver it via email? [more inside]
What is the point of using a salt when encrypting passwords in a web application? [more inside]
Encryptionfilter: I'm looking for a full disk encryption solution for desktop and laptop use. [more inside]
PasswordFilter: Any places to store passwords online? [more inside]
What's the absolute simplest way for two or more people to share encrypted information via email, either in the text body or as a file attachment? [more inside]
Let's say I wanted to create a simple web app to store my various usernames and passwords. The app and database would be hosted externally (by Dreamhost). I would use a secure connection for any HTTP stuff going back and forth, and I would encrypt all of the passwords before going into the db, and I can only extract and decrypt a password after entering a pass phrase that exists only in my brain. What would it take for someone else to get at my passwords? [more inside]
So I've gone to www.thawte.com/email and got myself a Freemail certificate and imported it into Thunderbird, and my friend is about to do the same thing, and we want to exchange encrypted mails. What do we actually DO with our shiny new certificates? [more inside]
Is there some way within Windows XP or using 3rd party software that I can password protect individual folders on my pcs so that you cant see or get access to what is in them with out entering a password? Just to be super clear, I want to do this one folder at a time not as a general login.
Given a couple of encrypted hash strings, I need to identify the algorithm used to generate the hashes so that I can brute-force decrypt them. More inside.. [more inside]
I'd like a signed ssl certificate, as signing it myself leads to warnings from both Internet Explorer and Safari.
signs 128 bit at $895, which seems ridiculous to me.
Does anyone have positive experience with other trust vendors