U2F and second factors to get rid of phishing!

This week’s post in minimal security is about second factors. Apart from password managers, this is perhaps something you can apply that increases your security the most. As we have seen in my post about password managers, passwords can be stolen from websites. A universal second factor (U2F) registered with a website will protect your accounts […]

password manager – minimal effort; awesome security

This weeks topic in minimal security is on password managers. I have a few older post where I talk about passwords and tools or the importance of strong passwords. I want to reiterate password managers this week and give a clear recommendation. If you are curious why you should care about your password read my previous post. […]

secure email communication with pep

This week will be the most easy advice to follow so far. However, it might also be the most useless (so far). Email encryption is something that all of us should get better at. Until now the problem was that the tools are barely usable for non computer science graduates. Fear not! There is a […]

secure communication on your smartphone

Welcome back to minimal security! This post is about how to communicate securely with your friends on your smartphone. I am sure we are all worried about sending our cat videos through insecure channels. Fear not! There are messaging apps that will protect you with minimal effort on your side. There is a myriad of […]

browsing security one step at a time

This is the first post of my series on using computers securely for non-technologists. This post is about online advertisement. Apart from being a nuisance there have been also reports of distributing malware and viruses through advertisement channels on websites. As one can see, online ads are not only annoying but also a security threat. […]

minimal security

This is going to be my first attempt at writing consequently and with intent. Up until now, my blog and my posts have been a collection of thoughts, impressions and unstructured information. I have been toying with the idea of putting more effort into my writing and my blog. I decided to make a public […]

gitlab the tyrant

I am still working on getting everything up and operational and I am working my way through the lush config landscape of all the applications. One such program that has been bugging me is Gitlab. Everytime I started Gitlab it immediately seized the power and redirected all incoming requests to itself. So no blog, no […]

HTTP/1.1 301 Moved Permanently

After playing around with a VPS in Iceland and hosting a Tor relay there I decided two things. First a VPS is awesome and second, not every VPS is awesome. Furthermore after some thinking I came to the conclusion that running 2 VPS and paying for additional webspace at another hosting company is overkill. Therefore […]

a tale of the internet and sensitive information

All the people using LastPass who might have not followed the company blog or Twitter should be aware that there has been a security incident at their data centers. Apparently they detected some suspicious activity within their network. They have written a blog post about what parts of their data has been compromised and what is […]

telegram – a revision

In several previous posts i promoted the use of Telegram. After using it for quite a while now and reflecting about the app i have to change my recommendation. While Telegram itself is a nice WhatsApp alternative that offers similar features, now i do feel that it actually fails its purpose and is using somewhat misleading PR […]