Klaus Knopper answers your Linux questions
SSL Encryption and Signature Compilation
Worrying About Privacy and Security
I don't have anything to hide, yet I care a lot about my private data as well as email and correspondence for my job, which must not be disclosed without permission from my employer. I've heard a lot of rumors about industrial spying and stealing of passwords and identities when using the Internet. Is it not safe to use the Internet anymore for banking, shopping, and transferring important data? Should we get back to telephone and fax, or is this even more insecure? How can I protect and safely transmit data and be sure it's not copied or misused by anyone?
The Internet, just like phone and fax, is just a neutral transfer medium. In fact, all three go through the same wires and wireless links nowadays, and electronic protocols make sure that data loss or data mangling is virtually impossible just because of a "bad connection." However, you are right, there is a level beyond physical transfer of data. Some parties may have a strong interest, criminal or not, in obtaining data from even seemingly unimportant information like what you shopped for recently, what you like, and who your friends are. Of course, "crackers" may also try to steal your credit card number or use your computer for attacking others by exploiting security holes or breaking in by trying passwords they have obtained from other sources.
Wiretapping an unencrypted connection is comparably easy, considering the fact that your data goes through a lot of computers, routers, switches, and other electronic equipment located at almost unpredictable locations of the world, and every person with physical access to the involved network components may be able to read or change the bits and bytes that your computer sends to others.
Read full article as PDF:
The Raspberry Pi Foundation has announced an even smaller version of the tiny computer that will fit into a DIMM slot.
A new class of problems lets a malicious app pre-configure an invisible privilege update.
New Hack language adds static typing and other conveniences.
New crypto policy system will offer easier configuration and more uniform security.
Ubuntu founder denounces insecurity in proprietary, close-source software blobs.
Vulnerability affects many Linux web servers
The Bavarian capital shuns Microsoft, Google, and other alternatives to implement an open source groupware solution.
Phone vendor partnerships bring Mark Shuttleworth's dream of Ubuntu on a phone a step closer to reality.
Donors will get to vote on new features for the free video editor.
Debian project puts init out to pasture and says no to Ubuntu's Upstart.