How easily can someone hack my home computer and steal personal information?

On Monday, March 13 at approximately 10:30 AM CST, I will be appearing on KFUO Radio’s Faith and Family program to discuss home computer security with host Andy Bates. Here’s the scariest question he’s planning to ask: How easily can someone hack my home computer and steal personal information?

Someone asked me that question at work once, except it was about a work computer. I whipped out a copy of a book about Metasploit, flipped to page 137, and started reading. My point was that I could teach this guy how. He didn’t take it well, so I don’t recommend doing that.

My point that I could teach this guy how to do it still stands, though. And I think I could teach Andy how too.

Read more

More on the new Intel 320 SSD

A few weeks ago, my security go-to guy, Rich P., bought a new Intel 320 SSD for his netbook.  With my encouragement, of course. It finally arrived this weekend, and he installed it. Rich reports not only faster speed, but also a 30-minute improvement in battery life over the WD Scorpio Black it replaced.

He told me the secure erase function, to enable AES, had a snag. But he solved it. I’m documenting it here in case you ran into the same thing he did.
Read more

Should journalists protect their sources?

In the wake of New York Times reporter Judith Miller going to jail for refusing to reveal the identity of an unnamed source, of course I was asked about journalism and confidential sources, and should journalists protect their sources anyway?

I liken this situation to what would go through my mind if the New York Yankees ever played the Cuban Nationals. I would have a hard time deciding which team I wanted to lose.You see, confidential sources aren’t something you’re supposed to use very often. Since the biggest journalism event of the previous century–Watergate–couldn’t have stood without Deep Throat, people tend to assume it happens a lot. In reality, you ought to see a rude four-letter word somewhere on the front page more often than you ought to see an unnamed source in a story.

I was taught that unnamed sources are inherently unreliable. Think about it. Why would you have any interest in what I had to say if I wasn’t willing to sign my name to it? When my name’s not on it, it doesn’t matter what kind of a lie I tell. It’s not going to affect my reputation any. The best source has something at stake by talking to the journalist. A lot of people find talking to journalists to be tedious and unpleasant, but let’s face it: People respect people whose names they see in the newspaper. So a journalist inherently ought to seek out people who have a need to build or protect a reputation.

To my knowledge, I only ever used unnamed sources once. That was in a story about college students drinking underage and getting DWIs. None of the students I interviewed wanted their names used. Every attorney I interviewed did. That’s predictable. And since the unnamed sources’ stories sounded reasonable, nobody questioned me over their use. My assurance that these people really lived and weren’t the product of my imagination was enough. The story ran.

But that’s one problem with unnamed sources: A lot of times they’re just a cover for laziness. It’s a lot easier to make up quotes than to get them. And if you’re not willing to divulge a name and a phone number, and the editor is willing to take you at your word that you talked to these people, unnamed sources can result in a lot of fiction being presented as fact.

That’s why I’m not a fan of unnamed sources. They should be a last resort, not a first resort. If one person’s willing to talk, someone else ought to be as well, and maybe that other person has a name and is willing to let you print it. And two unnamed sources lend more credibility than one. It’s a little harder to fake, for one thing.

But Ms. Miller used unnamed sources. And this unnamed source revealed the identity of a CIA operative during a time of war, which is a crime. Since she wouldn’t reveal the source’s name, she’s doing time.

And that’s why I liken this to the Yankees playing the Cubans. On one hand you have a journalist using an unnamed source. On the other hand, you have a government that considers this a time of war when it’s convenient, but not really a time of war when it’s not–there’s that little bit in the Constitution about only Congress being able to officially declare and wage war, for instance. And that government really seems to be eager to gobble up freedom these days. Without a truly free press, that’s one less check and balance. Thomas Jefferson once said newspapers are more important than government.

So I’m wondering a lot of things, including how Ms. Miller could have broken that law when we aren’t officially at war, but also if we were to lose a free press, how we would get it back. It’s a lot easier for the CIA to get another operative.

Journalist-source confidentiality is supposed to resemble that which exists between a doctor and a patient, an attorney and a client, or a priest and a parishioner. And while there are exceptions to those often unspoken confidentiality agreements, they are just that: exceptions. If during the course of gathering a story an unnamed source told me he committed a murder, or another heinous crime such as child abuse or rape, that’s obviously an exceptional situation. A journalist who has just learned such a thing should be compelled to go to the police, as should a priest.

While a CIA operative being unmasked is a more exceptional situation than someone confessing to having run a red light or having spent the previous evening at a disreputable entertainment establishment, I have a difficult time mustering up the same sympathy for the CIA as I would the family of a victim of a violent crime. Murder, rape, and molest ruin lives. Did Ms. Miller’s source ruin the CIA? Ms. Miller’s source certainly changed the life of that CIA operative, but is that along the lines of murder? Isn’t this situation one of the hazards of the job?

So while I don’t like the practice of using unnamed sources, and I’m anything but a big fan of the media as it exists today, I believe that a free press is a necessity. And by that I mean a truly free press–not a press that’s free to print things I agree with. The Soviet Union had that. The Pravda was free to print whatever the government would allow it to print.

Once you lose a truly free press, it usually takes a very bloody revolution to get it back.

Unfortunately, both the far left and the far right tend to want to suppress opinions that don’t agree with theirs. I believe that the people who disagree with me have the right to print whatever they want to print. I’m confident that enough people will see that they are idiots and will agree with me. And in those instances where I’m the idiot, how else would I ever find out that I’m the one who’s wrong?

So while I’m not willing to call Judith Miller a martyr–some headlines have–I believe I can make a case for siding with her. I don’t see how I can make anything but a very wobbly case in support of the government.

Those who don’t agree with me ought to click on that link a few paragraphs back that features some quotes from Thomas Jefferson.

Switched off

In response to Apple, Microsoft started its own “Switch” campaign featuring a freelance writer who ditched a Mac for a PC that runs Windows.
Well, the Associated Press tracked down this freelance writer and found she was a Microsoft PR hack. She said she really did switch. But Microsoft pulled the ad.

The AP tracked her down from the personal metadata Microsoft puts in all Office documents.

Can’t you just see the Apple “Switch” response now?

“Hi. I’m a CIA spy. I got rid of my insecure PC and switched to a Macintosh.”

I always thought the “Switch” campaign was really dumn, but suddenly Microsoft seems to have made it interesting.