I watched the movie called “Citizenfour” today. I am not a fan of documentary movies, but this time I made an exception, because this is a film about Edward Snowden. I made my position regarding Edward Snowden clear on this blog multiple times: he is a hero of our times. Without his leaks the general public wouldn’t be aware of the threat posed by the US(and their closest allies) to our freedoms. Without his leaks only security minded few(myself included) would worry about encryption and privacy. Without his leaks life would be definitely different.
If you were following all the events related to his persona, you will find nothing new in the movie. It can be still a good recap though. However, if you have missed his story(partially or entirely), I suggest you to download it(and yes, you can download it legally – it’s in public domain now) and watch it – incredibly good storytelling won’t leave you indifferent. This film is not your regular documentary. It’s more like a thriller. Even if you know from the beginning who good and bad guys are, you will find it enjoyable. I guess it’s the reason why the film has won the Oscar. Therefore, download it, watch it and spread the word.
Thanks to Edward Snowden we have learned a lot about threats from various(although mostly US) governments. We started to think more about secure technologies and cryptography. I was advertising high security standards even before the Snowden’s leaks. Some of my friends thought that I was being paranoid. Now everyone knows better than to trust RSA or any of their products. Everyone is aware of malware designed by intelligence agencies. Universal snooping isn’t an Orwell’s fantasy anymore, it’s reality.
Continue reading Perfect SSL in Apache
SELinux is complicated. No one will argue with this statement. That’s why I’ve assembled this list of useful commands to have a system up and running with SELinux enabled. Of course, you can take coward’s route and disable it completely, but professional paranoia should normally prevail. Continue reading SELinux cheat sheet
Corero Network Security has decided to release a report on DDoS attacks, which took place in this year. Well, I think, it’s too early to write such report, the year isn’t over yet, but apparently they wanted to be the first ones to present such report. The list isn’t new, but it is somehow curious, because it shows us that any web service could be disrupted with a well coordinated DDoS attack. Anyway, pretty much anyone who reads IT related news will be familiar with their top 5 list:
Continue reading Top 5 DDoS Attacks of 2011
On Sunday Bangladeshi hacker known as TIGER-M@TE launched an attack on web hosting provider InMotion. Hacker copied his own index.php to the various directories(public_html, wp-admin). More than 700,000 sites were affected by the attack, according to the hacker. If it is not the new world record, it’s still an amazing achievement.
Continue reading 700000 Sites Hacked