A crash course in computer security

In an earlier article I pasted a paypal donation button for truthstream media, which is totally deserving of generous support.   I wasn’t thinking.  For all you know, I might have pointed the button to my own fake website which could prompt you for your paypal ID and password.  Even checking the SSL security certificate is not necessarily a guarantee that the site is what it claims to be.   You need to check all kinds of arcane things like the chain of certificate authorities or whether the URL is encoded with UTF-8 characters which make it look like the real thing even if you paste it into your browser’s URL window, but could point to a totally different site.   There are other methods as well.   Never “Ok” a prompt for a security certificate unless you know what you’re doing.

Inneyway, most likely you don’t know me.  I might be a satanist scam artist for all you know.    I might have knocked off Richard and put a bot in his place.   Might be an improvement.  improvement. improvement.   bzzt!   stop.sequence(null)->infinity = disbelief(loss_of_trust); exit;

It’s the wild west out there.   Buyer beware etc.   Never click on a paypal button from a 3rd party site.

I’m removing the button.    Donate to them at:
See how I’m making you type it in?   Just making a point: cut and paste is also vulnerable to the UTF-8 approach.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.