Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. Rysiekúr Memesson (rysiek@mastodon.social)'s status on Sunday, 04-Nov-2018 08:48:15 EST Rysiekúr Memesson Rysiekúr Memesson

    Just listened to ep.226 of Defensive Security podcast by @jerry. Good stuff, as always.

    I did get a bit disappointed that when discussing "compromised CEO e-mail account sends an e-mail asking to do X", the simple solution of digitally signing an e-mail (GPG/PGP for instance) was not mentioned at all.

    If e-mails are signed, and people are trained, you *can* tell the difference between a legit and malicious e-mail coming from the mailbox. Attackers now need to compromise the CEO device itself.

    In conversation Sunday, 04-Nov-2018 08:48:15 EST from mastodon.social permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.