Security 41 – Listener Feedback and News

This week we had two great questions from listeners that we needed to answer.

Gunnar had a question about how to prevent traffic from leaving his phone before the VPN kicked in. Short answer: It depends, but there is no good answer.

A YouTuber, DaNutcase8210, asked if there was anyway to access an encrypted truecrypt volume if you accidentally deleted your key file. Answer: Probably not.

After we discussed two news stories:
1) Russian security Firm steals 1.2 billion credentials. The general consensus is that there shouldn’t be any real worry. We both think this sounds fishy
2) Paypal’s 2FA has been compromised.

Show Notes:

Bruce Schnier | response on the 1.2 billion credentials being stolen
Brian Krebs | Legitimate concern
PayPal 2FA compromised

No Comment?

Let’s go trolling. For the 32nd episode of inThirty we decide to wade into the reeking cesspool that resides under a lot of YouTube videos and most tech blog posts: the comment section. After comparing the (almost) anything goes comment policy at to the (absolutely) nothing goes one at, we discuss whether internet comments are useful at all and our favorite places to get into flame wars. By the time we get into which discussion forum technology is best, we start mangling the pronunciation of a lot newfangled web-two-point-oh sites. Sound off on which hosts’ elocution was best, where else, in the comments.

Show Notes / Posterous / / Slashdot / Disqus / Posterous / The Verge