* Posts by schekker

4 posts • joined 5 May 2016

Dutch cops hope to cuff 'hundreds' of suspects after snatching server, snooping on 250,000+ encrypted chat texts


Re: Sending a message

The Dutch police announced it because members of the channel had noticed it was compromised (due to arrests), assumed there was a snitch, and were planning to murder the one they suspected. So to prevent a murder they shut the service down and went public with it.

Bug? Feature? Power users baffled as BitLocker update switch-off continues


Re: Why does anyone trust Bitlocker?

I use bitlocker, and it is mainly for convenience and reliability reasons. I trust bitlocker will protect me against thieves accessing my data and against the police accessing it without a good cause (in that they might be able to access it, but only with considerable effort and costs), and that protection is enough for me. If the government is really after me, disk encryption is not going to make the difference.

I don't use other encryption products (well, I use the hardware SSD encryption of my Samsung SSD, but that has the same issues as bitlocker), as I find bitlocker to be convenient to use, and have faith in its reliability (which for me is really critical, I don't want to loose data because of issues with the encryption software).

Just give up: 123456 is still the world's most popular password


Any site just relying on passwords should be blamed instead

With the power of todays computers almost any password which can still be remembered by a human, can be brute-forced. And almost no human can remember fifty or more strong passwords without some common trick which immediately make all the other passwords weak if one gets published.

If a site is serious about its security, it should offer 2-factor authentication. If it does not, why should the user take security on that site serious? And sites should standardize their login so password managers will always work with them.

Stop resetting your passwords, says UK govt's spy network


Could not agree more. In fact any business which considers its security so crucial that permanent passwords are not acceptable, should not depend on passwords at all. Period. Token authentication or 2-factor authentication are far more secure and far less bothersome than passwords which need to be reset every x days.

Biting the hand that feeds IT © 1998–2019