Re: I got a good security one more ya.
- From: "Matthew R. Dempsky" <mrd@xxxxxxxxxxx>
- Date: Fri, 31 Mar 2006 01:06:42 -0600
On Fri, Mar 31, 2006 at 12:29:34AM -0600, Gromitigo wrote:
Ok. If I have files saved as a user, and someone takes my hard drive
out, puts it in another machine, mounts it...could they read that file
if they we're root? What about if I write the files as root?
They could read it fine.
Similarly, if you were to tar or zip up a directory containing files
with restricted read permissions (e.g. a backup of your home directory
including gpg or ssh keys), anyone with access to your tar/zip file can
easily read the relevant files.
As was said in another post, if someone swiping your hard drive is a
risk you need to account for, you should look into encrypting your hard
drive. These issues are non-trivial, however; dm-crypt, for example,
has (had?) a timing weakness that allows any user to recover the AES key
in a mere 65 *milliseconds*. [1]
You should also realize that if someone has physical access to your
machine, there are quicker ways to access your data than removing the
hard drive: they could simply boot a Live CD or append init=/bin/sh to
your bootloader's boot string. (These can be locked down if you're that
concerned, however.)
[1] http://www.wisdom.weizmann.ac.il/~tromer/papers/cache.pdf
--
ubuntu-users mailing list
ubuntu-users@xxxxxxxxxxxxxxxx
https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
- References:
- I got a good security one more ya.
- From: Gromitigo
- I got a good security one more ya.
- Prev by Date: Re: How to cut a MP3 in half?
- Next by Date: Re: I got a good security one more ya.
- Previous by thread: Re: I got a good security one more ya.
- Next by thread: Re: I got a good security one more ya.
- Index(es):
Relevant Pages
|
