Matthew Green wrote about GSM and LTE a few months ago: http://blog.cryptographyengineering.com/2013/05/a-few-though... TL;DR: GSM security is a joke. LTE is okay, except for two critical issues: One, an attacker can…
IIRC, Poland was the EU country that was the focus of attention. Skimming Wikipedia's most definitely totally truthy article on the subject [1] (actually, it has a lot of citations, so it should be easy to verify), the…
Public Service Announcement: "SHA1(password+salt)" is an extremely unsafe way to store passwords. Use PBKDF2, bcrypt or scrypt. Edit (T+7 minutes): Rewritten to not be a jerk.
Nginx has an equivalent preference, ssl_prefer_server_ciphers on. (Scroll down a bit on evmar's link.)
Matthew Green wrote about GSM and LTE a few months ago: http://blog.cryptographyengineering.com/2013/05/a-few-though... TL;DR: GSM security is a joke. LTE is okay, except for two critical issues: One, an attacker can…
IIRC, Poland was the EU country that was the focus of attention. Skimming Wikipedia's most definitely totally truthy article on the subject [1] (actually, it has a lot of citations, so it should be easy to verify), the…
Public Service Announcement: "SHA1(password+salt)" is an extremely unsafe way to store passwords. Use PBKDF2, bcrypt or scrypt. Edit (T+7 minutes): Rewritten to not be a jerk.
Nginx has an equivalent preference, ssl_prefer_server_ciphers on. (Scroll down a bit on evmar's link.)