Re: Extreme Security Suggestions?

To: jkuhn@nodc.noaa.gov (John Kuhn)
Cc: debian-user@lists.debian.org, timothy@smasher.rs.itd.umich.edu
Subject: Re: Extreme Security Suggestions?
From: Jiri Baum <jiri@baum.com.au>
Date: Sat, 6 Feb 1999 17:52:07 +1100 (EST)
Message-id: <[🔎] E1091b5-000094-00@legend.baum.com.au>
In-reply-to: <[🔎] 19990205130932.A8992@cardinal.grdl.noaa.gov> from John Kuhn at "Feb 5, 99 01:09:32 pm"

Timothy Hospedales:
> I am wondering what is the recommended way to secure a sizeable volume
> (0.5-2GB) of confidential data such that it is non-retreivable/unusable
> even in the event that a hacker has gained user level or <shudder> root
> access?

Removable harddisk? Hardware encryption?

If a hacker can repeatedly gain root access, theoretically there's not much
you can do, because he can subvert the mount program (or whatever asks for
the passwords) and md5 (or whatever is used to check integrity).

If you are worried about the disk being stolen, encrypted FS should do the
trick (unless the password can be obtained some other way).


Probably the best way to secure it would be to have the confidential data
on a machine that is well secured and not on the network.

Jiri
-- 
<jiri@baum.com.au>
We'll know the future has arrived when every mailer transparently
quotes lines that begin with "From ", but no-one remembers why.

Reply to:

References:
- Re: Extreme Security Suggestions?
  - From: John Kuhn <jkuhn@nodc.noaa.gov>

Prev by Date: Re: Unviewable pgp-signed messages
Next by Date: Re: /usr vs. /usr/local
Previous by thread: Re: Extreme Security Suggestions?
Next by thread: Re: Extreme Security Suggestions?
Index(es):
- Date
- Thread