Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Secure Blogging
Search
Kyle Maxwell
June 20, 2013
Technology
0
140
Secure Blogging
Presented at CryptoParty DFW.
Kyle Maxwell
June 20, 2013
Tweet
Share
More Decks by Kyle Maxwell
See All by Kyle Maxwell
In the Lair of the Beholder
krmaxwell
0
95
Using Python to Fight Cybercrime
krmaxwell
2
220
Incident Patterns
krmaxwell
0
380
Hackertainment
krmaxwell
1
220
Threat Intelligence for Incident Response
krmaxwell
0
170
From Minion to Engineer
krmaxwell
0
120
Why XOR Crypto Sucks
krmaxwell
0
200
Open Source Threat Intelligence - Shakacon
krmaxwell
1
880
Grabbing fresh evil bits: Maltrieve
krmaxwell
1
150
Other Decks in Technology
See All in Technology
How to be an AWS Community Builder | 君もAWS Community Builderになろう!〜2024 冬 CB募集直前対策編?!〜
coosuke
PRO
2
2.8k
2024年にチャレンジしたことを振り返るぞ
mitchan
0
140
終了の危機にあった15年続くWebサービスを全力で存続させる - phpcon2024
yositosi
17
15k
watsonx.ai Dojo #5 ファインチューニングとInstructLAB
oniak3ibm
PRO
0
170
20241220_S3 tablesの使い方を検証してみた
handy
4
610
PHPからGoへのマイグレーション for DMMアフィリエイト
yabakokobayashi
1
170
スタートアップで取り組んでいるAzureとMicrosoft 365のセキュリティ対策/How to Improve Azure and Microsoft 365 Security at Startup
yuj1osm
0
230
サイバー攻撃を想定したセキュリティガイドライン 策定とASM及びCNAPPの活用方法
syoshie
3
1.3k
複雑性の高いオブジェクト編集に向き合う: プラガブルなReactフォーム設計
righttouch
PRO
0
120
組織に自動テストを書く文化を根付かせる戦略(2024冬版) / Building Automated Test Culture 2024 Winter Edition
twada
PRO
17
4.7k
統計データで2024年の クラウド・インフラ動向を眺める
ysknsid25
2
850
LINE Developersプロダクト(LIFF/LINE Login)におけるフロントエンド開発
lycorptech_jp
PRO
0
120
Featured
See All Featured
Optimising Largest Contentful Paint
csswizardry
33
3k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k
A Modern Web Designer's Workflow
chriscoyier
693
190k
The Power of CSS Pseudo Elements
geoffreycrofte
73
5.4k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
280
13k
Automating Front-end Workflow
addyosmani
1366
200k
Designing on Purpose - Digital PM Summit 2013
jponch
116
7k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
95
17k
How To Stay Up To Date on Web Technology
chriscoyier
789
250k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5.1k
Designing for humans not robots
tammielis
250
25k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
29
2k
Transcript
Secure Blogging Kyle Maxwell @kylemaxwell
All opinions are my own. I believe in free speech
and the absolute right to secure, private communication. But don't be a jerk about this, okay? Disclosure Time
Threat model Who is your adversary? What can they do?
Technical Measures
Hiding your IP address Tor > VPN > Proxy http://www.megaleecher.net/uploads/secure-torrents.jpg
Operating systems Try not to use Windows. OS X or
Linux or Chrome OS are better choices
Microblogging (Twitter) is useful for many Static blog platforms: Jekyll
or Octopress Platform choices
Geolocation Go to your Twitter settings right now. "Tweet location:
Add a location to my Tweets" Then "Delete all location information" Don't ever turn that back on.
Image metadata EXIF data isn't just about your camera &
light conditions. It includes geolocation. http://photodb.illusdolphin.net/en/about/read-and-save-geo-location/
Operational Security
Pseudonymity (not anonymity) TELL NO ONE. NO ONE. And don't
reuse it. This burns people every day.
Social Networks
Personal Metadata http://blog.shutupandcode.net/?p=460
Don't click that link Clicking leads to phishing. Phishing leads
to exploiting. Exploiting leads to suffering.
Links https://mailman.stanford.edu/pipermail/liberationtech/ http://nationalsecurityzone.org/site/digital-security-basics-for-journalists/ https://www.eff.org/wp/blog-safely https://we.riseup.net/riseuphelp+en/radical-servers Contact
[email protected]
@kylemaxwell