Posts
Goathgen
Since I seldom need the functionality provided by oathgen (a complete HOTP/TOTP implementation), I typically use goathgen. Goathgen is a simple TOTP library and command line executable written in Go.
Posts
Oathgen
Oathgen is a command line HOTP and TOTP one-time password generator for BSD, Linux, Mac and Windows operating systems. The goal of oathgen is to be complete, standard and portable.
Posts
Padder
Padder can encrypt and decrypt small messages using one-time pads. It can also generate fake pads so that one encrypted message can be decrypted to multiple, different plaintexts.
Posts
Types of passwords
Understanding basic password types will help you devise a strong password management strategy for all of your accounts. In general, and at a high-level, there are two basic types of passwords.
Posts
The design flaws of password managers
I once worked in highly regulated environments and needed a way to recall dozens of complex passwords that changed frequently. I tried to use a password manager, but could not due to the burdens and insecurity of some common design flaws.
Posts
A survey of security.txt
I was curious to know how many popular websites have already uploaded a security.txt file and how many followed the most recent draft. So, I wrote a small Go program to check the Alexa Top 1 million websites.
Posts
They want us to be compliant, not secure
Some years ago, I worked for an organization that was involved in federally funded research. Occasionally, government IT auditors (or contractors that they hired) would visit our facilities to audit our systems.
Posts
Learning to blog in 2021
I’m new to blogging, but old to computers. I started this blog during Christmas 2020 and plan to write a few posts each month in 2021.