Ben Tasker's Blog

Google, Cloudflare and GDPR - my quandry

Just like most of the internet, I've been working hard making sure my site and services are GDPR compliant. For the most part, on the technical front I already was, and it's mostly been a case of making sure the documentation is up to scratch.

However, in one area, I've had to revisit a  decision that I've gone over and over after the past few years - having ads on (some) of the sites, compared to the alternatives.

I decided I'd create this post for a couple of reasons - partially because I suspect others may be in a similar situation, and also to try and help lay it out so I can spot alternatives to those I've already considered.

 

Read more ...

Changes to BenTasker.co.uk

I've recently made a few changes to BenTasker.co.uk, with some more in the pipeline.

This post gives details on the changes made so far.

Read more ...

A guide to designing Account Security Mechanisms

The history of the Internet is rife with examples of compromises arising both from poor security hygiene, and also from misguided attempts to "make it more secure" without first considering the implications of changes.

In this post, I'll be detailing some of the decisions you should be making when designing account security and user management functionality.

There's likely little in here that hasn't already been stated elsewhere, but I thought it might be helpful to put it all together in one post.

The post itself is quite long, so headings are clicky links to themselves. For those with limited time, there's a Cheat Sheet style summary towards the bottom.

Read more ...

An Open Letter on Medicinal Cannabis in the UK

Today, I watched as one of our representatives denied the opportunity to even debate the benefits of Medicinal Cannabis. Such was his disregard for those suffering, he seems to have acted to prevent simple discussion of the pros and cons.

I'm ashamed to say that he's the MP for the Town I grew up in. For years I've watched people fruitlessly try to convince our MPs to listen, today was too much and I've decided that I need to put my head above the parapet and share my experience in this area.

Below is an open letter which I've sent to the leaders of the 3 main UK political parties

Read more ...

Don't Use Web2Tor/Tor2Web (especially Onion.cab)

Web2Tor and Tor2Web are reverse proxies which allows clearnet users to access Tor Onion Sites (AKA Hidden Services), and there are a variety of services available online (such as onion.to, onion.cab, onion.city and onion direct) running this service.

This post details why using these is such a bad idea, as well as detailing some of the changes I'm making to the site to help discourage use of these services.

Read more ...