(no subject)

May. 3rd, 2007 04:38 pm
Flat | Top-Level Comments Only

(no subject)

Date: 2007-05-03 08:41 pm (UTC)
From: [identity profile] mazarinade.livejournal.com
Physical access trumps all.

There was a similar sort of tool that let you take admin access on Netware machines if you had physical access, and I found it invaluable when taking over sysadmin duties from an idiot who'd left in disgrace.

(no subject)

Date: 2007-05-03 09:18 pm (UTC)
From: [identity profile] theweaselking.livejournal.com
Heh. Kind of like a guy I know who was talking about how his machine was totally unhackable because there were giant random passwords to turn it on and get into Windows, there were no services running that listened to the outside AND he was behind a super-cool firewall thing.

Screwdriver + HDD + my machine + data not actually encrypted = mine, all mine, bwahahahahahahaha. I didn't even have to actually do it, just point out that he was running XP Home.

Or the Linux geeks who leave the reset button handy, so you can just boot up into single user mode and change the root password.

I'd kinda like this Mac tool, even if I only know one guy who owns a macbook.

(no subject)

Date: 2007-05-03 09:27 pm (UTC)
From: [identity profile] mazarinade.livejournal.com
I own a Macbook, and I would like to assure you that my physical security measures include a large, hairy angry primate with a blunt instrument. Best security money can't buy, that.

(no subject)

Date: 2007-05-04 03:50 am (UTC)
From: [identity profile] torrain.livejournal.com
"Didn't they know that the only unhackable computer is one that's running a secure operating system, welded inside a steel safe, buried under a ton of concrete at the bottom of a coal mine guarded by the SAS and a couple of armoured divisions, and switched off? What did they think they were doing?"

From "The Concrete Jungle", by Charles Stross.

(no subject)

Date: 2007-05-03 08:46 pm (UTC)
From: [identity profile] skola.livejournal.com
I so want one of those.

(no subject)

Date: 2007-05-03 09:28 pm (UTC)
From: [identity profile] heraldofchaos.livejournal.com
if you have physical acess to the machine its over.

doesnt matter what you put in the way, you can (for a reduculas cost) have the drive platters read by an electron microscope and decypered from there.

though why do i have a feeling even though its "FOR LAW ENFORCEMENT ONLY" that it will be easier to get than a gun...

come on, the term "licenced investigator" in the states is pretyy dubious.

(no subject)

Date: 2007-05-03 09:29 pm (UTC)
From: [identity profile] theweaselking.livejournal.com
doesnt matter what you put in the way, you can (for a reduculas cost) have the drive platters read by an electron microscope and decypered from there.

This is why there is such a thing as good encryption.

Of course, good encryption is only as good as the key, and the key is only as good as the means used to protect the key, but the principle is sound.

(no subject)

Date: 2007-05-03 09:36 pm (UTC)
From: [identity profile] heraldofchaos.livejournal.com
i wasnt thinking encription specificaly. when a drive is read with an electron microscope its reading deformations in the magnetic material that then has to get turned into data do decryted from physical info to data info.

i was thinking more of boot level protection that says, "if you acess this drive with out the correct hardware signal it auto formats." simaler to that "secret partition" software you can get for laptops that starts phoneing home if your laptop is stolen.

(no subject)

Date: 2007-05-03 10:03 pm (UTC)
From: [identity profile] mhoye.livejournal.com
Flash media plus truecrypt is the way to go, here.

(no subject)

Date: 2007-05-04 02:35 pm (UTC)
From: [identity profile] elffin.livejournal.com
Auto-formatting a magnetic platter isn't terribly effective. Indeed, Flash RAM drive FTW

(no subject)

Date: 2007-05-03 10:09 pm (UTC)
From: [identity profile] drjamez.livejournal.com
YAY to Mac fans feeling some heat. It'll get worse before long.

That is all.

- James -

(no subject)

Date: 2007-05-04 09:17 am (UTC)
kjn: (Default)
From: [personal profile] kjn
Yeah, and if you have the Apple-supplied OS CD and physical access, you can change the administrator password.

So what's new?

(no subject)

Date: 2007-05-04 12:14 pm (UTC)
From: [identity profile] theweaselking.livejournal.com
This is a handy little USB key and it looks cool.

(no subject)

Date: 2007-05-04 02:39 pm (UTC)
From: [identity profile] elffin.livejournal.com
Naturally, there is a way to defeat this "lockpick" - disable USB media automount, and/or close your keychain. Security-minded Macgeeks will have done either/or.

And, if they're law enforcement types, all they need is a warrant.

(no subject)

Date: 2007-05-04 03:01 pm (UTC)
From: [identity profile] elffin.livejournal.com
Oh, damn. It also requires double-clicking on the application to run it. Damn.

Now all I need to do is get a MD5 or sha1 fingerprint of that application.

Again: A way to rip off law enforcement.

(no subject)

Date: 2007-05-04 03:16 pm (UTC)
From: [identity profile] sebkha.livejournal.com
Huh. I didn't know I had to explicitly lock my keychain. O_o

*does so*
Flat | Top-Level Comments Only

Profile

theweaselking: (Default)theweaselking
Page generated Jul. 18th, 2025 05:59 am