crypto, risk, security, tech

how many factors, anyway?

February 24, 2017

I’ve been using Google’s 2 factor authentication for awhile now, it’s simple to use and seems effective (and is probalby the most commonly used 2F on earth.) But how many...

crypto, security, tech, web

February 5, 2016

The free certs from https://letsencrypt.org/ do indeed work as described. I wanted to check them out for some public facing services I wanted to run. To get the certificate you run a...

code, crypto, hack, philosophy, security

d3ck, d3ck, goose

May 13, 2015

A bit over 2 years ago I started on a journey that has become a bit surreal; I had what seemed like a modest goal, simply create something that would...

crypto, philosophy, security, tech, web

certificates and security

August 5, 2014

npm is the defacto package manager for the node.js javascript network programming environment thingee. The folks who make npm have taken a security leap: npm no longer supports its self-signed certificates...

BMC, crypto, embedded, ipmi, tech, work

Even more IPMI, woohoo!

June 5, 2014

I wrote a small paper surveying the scene of IPMI in the wild – Sold Down the River – the title of which might give you some clue as to...