Category Archives:

Technology

Ask American computer security expert, Jon Callas

You know that crazy interview question, “If you could have dinner with any famous person, living or dead, who would it be?” Well, someone the other night answered, Jon Callas. Perhaps there are several of you out there with interest in the world of cryptography and information security and would also enjoy the opportunity to […]

Read More

Security Vulnerability in Py-Bcrypt 0.2

This blog post is probably only interesting to programmers. Regular SpiderOak users can safely ignore this article. (It is not related to the SpiderOak backup and sync software.) There’s a security vulnerability with py-bcrypt. The vulnerability allows an attacker (“Eve”) to login as any user by making a login attempt with a bogus password, overlapping […]

Read More

Git, clients, partners, and woes.

This post comes from the “hindsight is twenty-twenty department.” A few years ago when we started our White Label program, we were wondering how to manage the different client branding, GUI customization, etc. Our first thought was “I know! We’ll use git!” Then we had two problems. We used to use one branch in git […]

Read More

Exploit Information Leaks in Random Numbers from Python, Ruby and PHP

The Mersenne Twister (MT 19937) is a pseudorandom number generator, used by Python and many other languages like Ruby, and PHP. It is known to pass many statistical randomness tests, but it’s also known to be not cryptographically secure. The Python documentation is clear on this point, describing it as “completely unsuitable for cryptographic purposes.” […]

Read More

HTML5 Mobile Client Open Development Project

I’m happy to announce that SpiderOak will be proceeding with its development of the new mobile client as an open development project. We are eager to arrange greater access to progress, as it proceeds, and to provide more opportunities for interested users to contribute, in various ways. This means that we will be continuing our […]

Read More

Now Hiring –> JavaScript / HTML5 Engineer

We’re looking for an excited JavaScript hacker to join us and help us advance state-of-the-art technology implementation in JavaScript. We’re looking to do some Cool New Things on the web that have been traditionally limited to our desktop client, and need someone who can help us push that along. Do you enjoy trying to push […]

Read More

Speeding up and running legacy test suites, part two

This is part two in a two part series on Test Driven Development at SpiderOak. In part one, I discussed ways to decrease the time it takes to run a test suite. In part two, I discuss two ways to run a test suite that are painful if the tests are slow, but greatly beneficial […]

Read More

Speeding up and running legacy test suites, part one

This is part one in a two part series on Test Driven Development at SpiderOak. In part one, I discuss ways to decrease the time it takes to run a test suite. In part two, I’ll discuss two ways to run a test suite that are painful if the tests are slow, but greatly beneficial […]

Read More

A note to our Tech-Savvy, Forward-Thinking SpiderOak Users. Yes – We’re Talking to You!

An Open Letter to Our Tech-Savvy Forward-Thinking Users: We wanted to send our utmost admiration and gratitude. Great activity continues as we and our industry grow and push forward. Much of what we have developed and the choices we have made since our 2007 inception has been because of you – our wonderful user base. […]

Read More

Zero-Knowledge 101: What It Is & What It Means to You

Welcome to SpiderOak University. If you’re a student, new user, or a lover of continuous learning, this month we’re talking to you. We’ll be posting a couple video shorts each week where SpiderOak CEO Ethan Oberman uses a whiteboard to explain some of our basic product functionalities. School yourself and keep an eye out for […]

Read More