Re: Should I use gbde or geli?

On Mon, 30 Jan 2006, Peter Jeremy wrote:

>> If some burglar were to steal the
>> computer it most likely would be cut off from power.
>
> If I knew that the computer had sensitive information that would be
> lost to me if the computer got powered off, I would ensure that the
> computer didn't lose power whilst I was stealing it.  Maybe I can
> steal the UPS with the computer.  If not, I could try opening the
> case and paralleling my own supply.
>
> -- 
> Peter Jeremy

I know I'm coming in on this thread WAY late, but I thought I'd throw one 
more piece of info in here.  If I'm not mistaken, an easier way to recover 
the key would be to use firewire, if the server has a firewire port. 
Theoretically you should be able to make a custom FreeBSD kernel that 
will dump the contents of another machine's memory just by connecting to 
its firewire port.

But that's just info I've gleaned from skimming bugtraq, it could be 
wildly inaccurate.

> Actually, even though you haven't mentioned the company, someone with
> the resources to consider breaking AES would probably not find it too
> difficult to find the company's name.  You _have_ admitted that you
> are one of the people who knows the passphrase.

Hey, if we come up with a good attack plan, do you think those people 
would find us and hire us to do the attack? :)

Mike "Silby" Silbersack
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"