If root becomes a SPY :-O

Damnation · 04-08-2005, 04:36 AM

encrypting your files doesn't work,
for example if your a scrpt kiddie, and u piss off the fbi and your files are encrypted, 10 mins in a locked room. your genitals attached to a 24volt battery, and you'll be talking. that key will be out of your mouth in a very short while!

Nad0xFF · 04-08-2005, 08:12 AM

I think all that criptography doesn't matter here (it may be true about voltage

). I mean security model in general

TruckStuff · 04-08-2005, 09:46 AM

What the hell difference does it make? We're arguing semantics here. Yes, root can have access to anything on the box. That's why he's root. As has been said at least 3 times in this thread, if you can't trust your admin, get another.

sigsegv · 04-08-2005, 12:12 PM

Quote:

Originally posted by Damnation
encrypting your files doesn't work,
for example if your a scrpt kiddie, and u piss off the fbi and your files are encrypted, 10 mins in a locked room. your genitals attached to a 24volt battery, and you'll be talking. that key will be out of your mouth in a very short while!

Please ... The FBI doesn't have to resort to such barbaric tactics.

The feds confiscate your equipment, mount your drives, get your crypto keys (most ppl are really stupid and think that keeping their documents encrypted will keep them secure when the keys are on the same disk ...) and read your files to their heart's content. They only use the 24volt battery trick to get your USB key with your keys on it

Nad0xFF · 04-08-2005, 12:18 PM

I think, that 220, not 24

michaelsanford · 04-08-2005, 12:51 PM

What about disabling the root user (shell) and monitor sudo logs ?

TruckStuff · 04-08-2005, 02:11 PM

Quote:

Originally posted by michaelsanford
What about disabling the root user (shell) and monitor sudo logs ?

That may work fine until either 1) sudo breaks or 2) some critical configuration gets hosed and then you can't log into the system to fix it.