Internet and e-mail policy and practice
including Notes on Internet E-mail


2014
Months
Apr

Click the comments link on any story to see comments or add your own.


Subscribe to this blog


RSS feed


Home

28 Apr 2014

A helpful tip for AOL users Email
AOL finally
confirmed today that crooks have stolen credentials and address books from some large number of AOL users. (They say 2%, but that's only the ones they know about so far.) So we suggest you take some routine security precautions.

See more ...


posted at: 21:57 :: permanent link to this entry :: 0 comments
Stable link is https://www.jl.ly/Email/aolchange.html

19 Apr 2014

Open Source software is the worst kind except for all of the others Internet

Heartbleed, for anyone who doesn't read the papers, is a serious bug in the popular OpenSSL security library. Its effects are particularly bad, because OpenSSL is so popular, used to implement the secure bit of https: secure web sites on many of the most popular web servers such as apache, nginx, and lighttpd.

A few people have suggested that the problem is that OpenSSL is open source, and code this important should be left to trained professionals. They're wrong. The problem is that writing and testing cryptographic software is really, really hard.

See more ...


posted at: 09:45 :: permanent link to this entry :: 3 comments
Stable link is https://www.jl.ly/Internet/openssl.html

The Authors Guild Enters a Parallel Reality Copyright Law

I used to say to our audiences: "It is difficult to get a man to understand something when his salary depends on his not understanding it!"
- Upton Sinclair, I, Candidate for Governor: And how I Got Licked, (1935), p. 109
In November, the Authors Guild suffered a
crushing defeat in their long running suit against Google's book scanning project, with a broad decision agreeing with Google that the scans are protected by fair use. Not surprisingly, they're making a last ditch appeal to the Second Circuit. While I see no realistic chance of them winning, not least because Judge Chin who wrote that decision is now a well respected member of the court to which they are appealing, it's always interesting to see how they think they'll get the court to reverse. Having read their brief, all I can say is, it's really strange.

See more ...


posted at: 09:44 :: permanent link to this entry :: 0 comments
Stable link is https://www.jl.ly/Copyright_Law/agaltrel.html

07 Apr 2014

Yahoo addresses a security problem by breaking every mailing list in the world Email
DMARC is what one might call an emerging e-mail security scheme. It's emerging pretty fast, since many of the largest mail systems in the world have already implemented it, including Gmail, Hotmail/MSN/Outlook, Comcast, and Yahoo.

See more ...


posted at: 21:21 :: permanent link to this entry :: 9 comments
Stable link is https://www.jl.ly/Email/yahoobomb.html

Topics


My other sites

Who is this guy?

Airline ticket info

Taughannock Networks

Other blogs

CAUCE
CSA recap: CAUCE discusses international email and security
111 days ago

A keen grasp of the obvious
My high security debit card
242 days ago

Related sites

Coalition Against Unsolicited Commercial E-mail

Network Abuse Clearinghouse



© 2005-2018 John R. Levine.
CAN SPAM address harvesting notice: the operator of this website will not give, sell, or otherwise transfer addresses maintained by this website to any other party for the purposes of initiating, or enabling others to initiate, electronic mail messages.