Daily links for 01/19/2011

• Google's Niels Provos battles malware on the Web | InSecurity Complex - CNET News

  During 2000 and 2001, Ph.D. student Niels Provos would occasionally drive from the University of Michigan across the border into Canada and spend the weekend working on an open-source cryptography project that would end up becoming one of the most widely used network security technologies ever: OpenSSH.

  tags: security infosec malware google niels provos

• Metasploit: Mobile Device Security and Android File Disclosure

  Back in November, Thomas Cannon brought to light an issue within the Android operating system. Specifically, he found that it was possible to obtain the contents of files on an Android device by simply persuading its owner to visit a web site under attacker control. The issue only garners a 3.5 CVSS score, but yet it’s still fairly serious.

  tags: security metasploit google android mobile

• Troy Hunt: Who’s who of bad password practices – banks, airlines and more

  Ah, passwords. Love ‘em or hate ‘em, they’re a necessary evil of the digital age. The reality is we all end up with an alphabet soup of passwords spread over dozens of various sites and services across the internet. Whilst we might not always practice it, we all know the theory of creating a good password; uniqueness, randomness and length. The more of each, the better.

  tags: infosec privacy security web

Posted from Diigo. The rest of my favorite links are here.