Tech Blog (128 posts in ~17 years)

Searches stay local. No external search engine is involved. More info

Stadia Maps Privacy Fail

Published 8 hours ago March 20, 2026 2 min read

Cert Authorities Check for DNSSEC From Today

Published 5 days ago March 15, 2026 1 min read

Website Testing on Steroids

Published 1 week ago March 8, 2026 7 min read

ParseMail

Published 3 weeks ago February 22, 2026 4 min read

New Website, New Technology

Published 1 month ago February 18, 2026 4 min read

Apple's "Protect Mail Activity" Doesn't Work

Published 2 months ago January 19, 2026 3 min read

Immortal SSH Sessions

Published 7 months ago August 1, 2025 1 min read

Fun with Gzip Bombs and Email Clients

Published 8 months ago July 22, 2025 3 min read

Evolution Mail Users Easily Trackable Part 2

Published 8 months ago July 18, 2025 2 min read

Evolution Mail Users Easily Trackable

Published 8 months ago July 9, 2025 2 min read

Blocking Russian IPs

Published 1 year ago March 6, 2025 1 min read

Sending Email Using Curl

Published 1 year ago December 7, 2024 1 min read

Skiff.com Email's Various Privacy Failures

Published 2 years ago August 27, 2023 6 min read

Self Building and Executing Dockerfiles

Published 4 years ago November 10, 2021 1 min read

Sandbox Rust Development with Rust Analyzer

Published 5 years ago October 25, 2020 2 min read

Manage Firewall from Dockerised NodeJS

Published 5 years ago October 17, 2020 2 min read

Nginx Restic Backend

Published 6 years ago October 4, 2019 5 min read

Twitter to RSS with Google Cloud Function

Published 7 years ago December 24, 2018 1 min read

GPG Agent Forwarding

Published 8 years ago October 3, 2017 1 min read

Keybase Browser Extension Insecure

Published 8 years ago August 5, 2017 3 min read

Email Authentication Failure

Published 8 years ago July 28, 2017 3 min read

Monitoring Expiry of GPG Keys

Published 8 years ago July 28, 2017 1 min read

Lavabit Security Misconfiguration

Published 8 years ago July 6, 2017 2 min read

Investigating a JavaScript/React Performance Issue

Published 8 years ago May 25, 2017 3 min read

Private Location Tracking/Sharing

Published 8 years ago May 22, 2017 4 min read

When Backup MXs Are Ignored

Published 9 years ago November 6, 2016 2 min read

The Sad State of HTML Email Input Fields and IDNs

Published 9 years ago October 23, 2016 2 min read

DNSCrypt Reduces Privacy

Published 9 years ago September 14, 2016 2 min read

MeteorJS Sorting Troubles

Published 10 years ago November 28, 2015 2 min read

An NFC PGP SmartCard For Android

Published 10 years ago April 21, 2015 2 min read

Perfectly Private Android Networking (Almost)

Published 10 years ago April 20, 2015 2 min read

Exploiting External Entities in RSS Feed Readers

Published 11 years ago December 8, 2014 1 min read

DNS Validation of Email Addresses in Perl

Published 11 years ago December 1, 2014 2 min read

GPGIT Broken by Breaking Change in GnuPG::Interface

Published 12 years ago March 13, 2014 1 min read

Security Bug in Thunderbird - Open Websites in Tabs

Published 12 years ago January 26, 2014 2 min read

Transparent Access to Tor Hidden Services

Published 12 years ago December 1, 2013 5 min read

Transparent Access to I2P eepSites

Published 12 years ago November 30, 2013 2 min read

Disk Caching with SSDs on Linux and Windows

Published 12 years ago November 17, 2013 7 min read

FastMail.FM Security Vulnerabilities

Published 13 years ago June 21, 2012 7 min read

Protecting Your GNU/Linux System from Dropbox

Published 13 years ago May 29, 2012 8 min read

New Version of The Email Privacy Tester

Published 13 years ago May 6, 2012 2 min read

Android Privacy Guard and Subkeys

Published 13 years ago April 10, 2012 3 min read

Smart Cards and SSH Authentication

Published 14 years ago February 1, 2012 5 min read

Punching through The Great Firewall of T-Mobile

Published 14 years ago January 5, 2012 4 min read

Extended Life Phone Batteries

Published 14 years ago January 2, 2012 1 min read

Secure, Free, Incremental and Instant Backups for Linux

Published 14 years ago December 30, 2011 3 min read

TextSecure and the inPulse SmartWatch

Published 14 years ago December 24, 2011 2 min read

Understanding DNSSEC

Published 14 years ago December 5, 2011 10 min read

Defending Against Spear Phishing with Exim

Published 14 years ago October 3, 2011 2 min read

Toughening up RequestPolicy

Published 14 years ago September 6, 2011 3 min read

Solving the SSL CA Debacle Using Multi-Signed Certs

Published 14 years ago September 5, 2011 3 min read

Protecting a Laptop from Simple and Sophisticated Attacks

Published 14 years ago August 26, 2011 12 min read

Preventing Web Tracking via the Browser Cache

Published 14 years ago August 21, 2011 2 min read

Mozilla Security Bug Reveals Web Proxy Credentials

Published 14 years ago August 16, 2011 4 min read

Protecting PGP Smartcards from Observation Attacks

Published 14 years ago August 14, 2011 2 min read

View-Source URIs and RequestPolicy Bypass

Published 14 years ago July 11, 2011 2 min read

FireGPG on Firefox 5

Published 14 years ago July 5, 2011 2 min read

Boxee.TV Helps Its Self To Your Viewing Habits

Published 14 years ago June 15, 2011 2 min read

2011 EU Cookie Legislation - Opinion of a UK Web Developer

Published 14 years ago May 27, 2011 4 min read

Microsoft Exchange Private Appointments Aren't Private

Published 14 years ago May 16, 2011 3 min read

Android Application Firewall: DroidWall

Published 14 years ago March 30, 2011 2 min read

Dropbox Mobile: Less Secure Than Dropbox Desktop

Published 15 years ago March 10, 2011 3 min read

Advertise Your Wifi in Your Customers' Kik Messages

Published 15 years ago March 8, 2011 2 min read

LastPass Vulnerability Exposes Account Details

Published 15 years ago February 26, 2011 4 min read

Bypassing "RequestPolicy" Using Protocol Relative URLs

Published 15 years ago February 17, 2011 2 min read

Automatically Encrypting all Incoming Email, Part 2

Published 15 years ago February 16, 2011 2 min read

Case Study: Multiple Convore Security/Privacy Problems

Published 15 years ago February 11, 2011 7 min read

When Third Party Email Providers Leak

Published 15 years ago February 8, 2011 1 min read

Abusing HTTP Status Codes to Expose Private Information

Published 15 years ago January 21, 2011 4 min read

Using Linux to Monitor Room Temperature Remotely and Cheaply

Published 15 years ago January 19, 2011 2 min read

Automatically Encrypting all Incoming Email

Published 15 years ago January 13, 2011 3 min read

New Year Bug in At Command

Published 15 years ago December 31, 2010 1 min read

Publishing PGP Keys in the DNS

Published 15 years ago December 15, 2010 1 min read

Using HTTPS Everywhere from Perl

Published 15 years ago November 13, 2010 1 min read

Why Does this Website Generate SSL Warnings?

Published 15 years ago November 7, 2010 4 min read

Kik Messenger Insecure

Published 15 years ago November 7, 2010 2 min read

Why no Firesheep for IM?

Published 15 years ago November 5, 2010 2 min read

Tor Circuits with Two Hops on Ubuntu

Published 15 years ago September 20, 2010 2 min read

Scalable Vector Graphics and XSS

Published 15 years ago July 29, 2010 2 min read

iOS 4 iPhone Email Privacy Leak

Published 15 years ago July 13, 2010 1 min read

Changing from GoogleMail to GMail Killed My Phones Battery Life

Published 15 years ago June 18, 2010 2 min read

Setting up IPv6 is Easier Than You Think

Published 15 years ago May 28, 2010 3 min read

Getting The Search Term From Clicks From Google SSL

Published 15 years ago May 24, 2010 2 min read

DuckDuckGo Searches Are Not Anonymous

Published 15 years ago May 19, 2010 1 min read

Making BitTorrent Safe to Use Over Tor

Published 15 years ago May 18, 2010 3 min read

Exim Trick to Extract Received Header IP Addresses

Published 15 years ago May 5, 2010 2 min read

Extract Domains from Email Using Exim

Published 15 years ago April 30, 2010 2 min read

DNSSEC Will Kill Commercial CAs

Published 15 years ago March 30, 2010 1 min read

Use Random Passwords Which You Can't Remember

Published 16 years ago March 2, 2010 2 min read

Secure URL Redirects using Apache, ModRewrite and ModSecurity

Published 16 years ago February 27, 2010 2 min read

Blocking Comment Spam Using ModSecurity and Hidden Fields

Published 16 years ago February 20, 2010 2 min read

Automated Email Privacy Tester

Published 16 years ago February 13, 2010 2 min read

How to Reliably Crash the iPhone's E-mail Client

Published 16 years ago February 11, 2010 1 min read

Android Email Information Leak

Published 16 years ago February 6, 2010 1 min read

ClickJacking and SSL Protection in Apache

Published 16 years ago January 26, 2010 2 min read

Android Battery Graphing Source Code

Published 16 years ago January 24, 2010 1 min read

DNS Pre-fetch Exposure on Thunderbird and Webmail

Published 16 years ago January 23, 2010 2 min read

SpamAssassin 2010 Bug

Published 16 years ago January 1, 2010 2 min read

JSAPI Incompatible with XSLT

Published 16 years ago December 13, 2009 1 min read

Debenhams Fails at Sending Email

Published 16 years ago December 10, 2009 4 min read

JavaScript Comma Quirk

Published 16 years ago December 9, 2009 1 min read

Apache Forward Proxying with Compression

Published 16 years ago November 18, 2009 1 min read

Compressing JavaScript on the Fly

Published 16 years ago November 9, 2009 1 min read

Poundhost vs RapidSwitch vs GameServersDirect vs FPSGame

Published 16 years ago November 1, 2009 2 min read

Compressing CSS on the Fly

Published 16 years ago October 28, 2009 2 min read

Android Email Sucks

Published 16 years ago October 26, 2009 2 min read

Gumtree Rental Fraud

Published 16 years ago October 16, 2009 3 min read

Monitor Your Website Automatically From Cron

Published 16 years ago October 8, 2009 1 min read

Apple Mail Privacy Hole

Published 16 years ago October 2, 2009 2 min read

Your Email Address Isn't Safe

Published 16 years ago September 24, 2009 1 min read

BBC Wrong About Mobile Broadband Speeds

Published 16 years ago September 22, 2009 1 min read

Poundhost vs RapidSwitch

Published 16 years ago September 21, 2009 2 min read

Poundhost Data Storage

Published 16 years ago September 8, 2009 2 min read

Trusting Replies to Trusted Email Messages

Published 16 years ago August 5, 2009 2 min read

Redirecting Pages through CGIProxy with Squid

Published 16 years ago August 4, 2009 1 min read

Detecting Bad ClamAV Signatures by Scanning Ham

Published 16 years ago July 14, 2009 2 min read

Automatically Expiring Email Addresses

Published 16 years ago June 3, 2009 2 min read

Accessing Memcached from Exim

Published 16 years ago May 13, 2009 1 min read

Whitelist Recipients in Exim

Published 16 years ago April 25, 2009 2 min read

3G Network Latency Comparison

Published 16 years ago April 23, 2009 1 min read

Exim Client Authentication Recipe

Published 16 years ago April 21, 2009 2 min read

CommuniGate Pro Contact Folders as a Whitelist Source for Exim

Published 16 years ago April 17, 2009 2 min read

Accessing Rejected Spam Solution

Published 16 years ago April 13, 2009 3 min read

Cross Browser Compatible XSLT

Published 16 years ago April 11, 2009 2 min read

Mitigating Spear Phishing

Published 16 years ago April 8, 2009 2 min read

Livejournal opt-out of Phorm

Published 16 years ago April 8, 2009 1 min read

Google Phone Battery Usage Graphing

Published 16 years ago March 30, 2009 1 min read

Phorm - Webwise

Published 16 years ago March 28, 2009 1 min read

↑ Back to top

Tech Blog (128 posts in ~17 years)

Keyboard Shortcuts

Go to