Re: Security Flaw in Popular Disk Encryption Technologies
On Sat, Feb 23, 2008 at 02:08:31PM +1300, Atom Smasher wrote:
> article below. does anyone know how this affects eli/geli?
There's fairly little any disk crypto system can do to thoroughly defend
against this. The best workaround currently is to turn off your machine
when not in use. This has always been a good idea, since even without
this attack, a running or sleeping machine can simply be retained until
the appearance of a 0-day in the kernel or other running services.
Granted, that often takes a while for FreeBSD. ;) Also, keeping your
*really* sensitive data in a separate encrypted store which isn't always
mounted is probably a good idea.
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 9 之 31 篇):