Date: Mon, 13 Mar 2006 03:03:33 -0600 (CST) From: Mike Silbersack <silby@silby.com> To: Peter Jeremy <peterjeremy@optushome.com.au> Cc: freebsd-security@freebsd.org Subject: Re: Should I use gbde or geli? Message-ID: <20060313025812.S85735@odysseus.silby.com> In-Reply-To: <20060130073935.GA702@turion.vk2pj.dyndns.org> References: <drgdg9$1klu$9@nermal.rz1.convenimus.net> <20060129022943.GJ2341@turion.vk2pj.dyndns.org> <dri7ra$1ouq$1@nermal.rz1.convenimus.net> <20060130073935.GA702@turion.vk2pj.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 30 Jan 2006, Peter Jeremy wrote: >> If some burglar were to steal the >> computer it most likely would be cut off from power. > > If I knew that the computer had sensitive information that would be > lost to me if the computer got powered off, I would ensure that the > computer didn't lose power whilst I was stealing it. Maybe I can > steal the UPS with the computer. If not, I could try opening the > case and paralleling my own supply. > > -- > Peter Jeremy I know I'm coming in on this thread WAY late, but I thought I'd throw one more piece of info in here. If I'm not mistaken, an easier way to recover the key would be to use firewire, if the server has a firewire port. Theoretically you should be able to make a custom FreeBSD kernel that will dump the contents of another machine's memory just by connecting to its firewire port. But that's just info I've gleaned from skimming bugtraq, it could be wildly inaccurate. > Actually, even though you haven't mentioned the company, someone with > the resources to consider breaking AES would probably not find it too > difficult to find the company's name. You _have_ admitted that you > are one of the people who knows the passphrase. Hey, if we come up with a good attack plan, do you think those people would find us and hire us to do the attack? :) Mike "Silby" Silbersack
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060313025812.S85735>