GnuPG, originally released 20 years ago, offers encryption for everyone. However, like every piece of software, it neither is flawless nor perfect. Recent attacks like ROCA, SigSpoof, Efail, and signature flooding revived the discussions about its security.
In this article, we present an overview of the current state of GnuPG for e-mail encryption and signing.
Each month, we publish a review that covers the most important activities of the last 30 days. This month, we talk about the KNOB attack, DejaBlue, minisign, and more.
In this part of the Web server security series, we show basic log file analysis using lnav (“The Log File Navigator”).
When it comes to information security and privacy, some people specialized in spreading black and white thinking. According to them, there is either a 100% approach to security/privacy or there is no security/privacy at all. This is not only totally wrong but results in a “toxic user mentality”.
In this article, we briefly show related problems and the pointlessness of proclaimed behavior rules.
In March 2019, we checked the LineageOS-based ROM provided by the French /e/ foundation. In this article, we look at the /e/ Android ROM again to check whether issues identified by us are still present.