LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 03-07-2005, 06:41 PM   #1
PeterOnTheNet
LQ Newbie
 
Registered: Feb 2005
Location: UK
Distribution: Slackware, Mandrake, ClarkConnect
Posts: 28

Rep: Reputation: 15
how to secure data on HDD Vs FBI, CIA MI5


I was wandering if it's possible to someone get to data on my harddrive if he does not know root or any ones password. How we can keep our data secure on the computer so even FBI, CIA, MI5, etc when they will get this laptop to their dirty hands they can NOT access any data there. Are there any special software to secure it or Linux itself is so secure?

Thanks

 
Old 03-07-2005, 06:52 PM   #2
BrianW
Member
 
Registered: Jul 2003
Location: Montana
Posts: 297

Rep: Reputation: Disabled
As long as someone has access to your box physically nothing is safe (doesn't matter how good your password is). Even writing 0's is considered a waste anymore as there are claims that the technology exists that data can be recovered even after being 000'ed up to about 30 times.
 
Old 03-07-2005, 07:07 PM   #3
icehenge
Member
 
Registered: Jan 2004
Location: Tennessee
Distribution: Slackware 8.1 (KDE 3.0.1)
Posts: 69

Rep: Reputation: 15
If someone has the luxury of having physical access to your computer
they can boot using a bootdisk, mount the HD partitions, then make
/etc/passwd writable and erase the X where your root
password was shadowed. Then root will have a blank password.

I think some encryption software might be what your looking for.
Sorry I can suggest something to try though.
 
Old 03-07-2005, 07:18 PM   #4
PeterOnTheNet
LQ Newbie
 
Registered: Feb 2005
Location: UK
Distribution: Slackware, Mandrake, ClarkConnect
Posts: 28

Original Poster
Rep: Reputation: 15
In general thats what I want is there any encryption software for linux , anyone here used one?
Or any Linux distro with encryption built in. I have seen so many important laptops in my life, some of them can be worth a fortune and it has to be a system to secure your data, Cause at the moment we are not any different from Windows users.
You got my disk you got my money!!!
 
Old 03-07-2005, 07:33 PM   #5
killerbob
Member
 
Registered: Oct 2004
Location: Ottawa, ON
Distribution: Slackware
Posts: 662

Rep: Reputation: 31
It's possible to secure wipe a hard drive, even against data recovery. You don't want to zero the platter, you want to fill it with random bits. Repeatedly.

Something like "dd if=/dev/random of=/dev/hdX" should work. Do it a few times to be sure.

It begs the question, though, why you're so interested in being able to protect your data from spy agencies. Do you have something to hide?

As for encryption, it's laughable how crappy pretty much all commercially-available encryption are. Even with the strongest encryption you can find, if they have access to the hard drive, and there's *any* pattern to the encryption scheme (which you need to be able to decrypt the data), then with enough patience they can decrypt it. Period. Depending on the strength of your encryption, it takes more or less time, but as long as you're using an off-the-shelf encryption algorithm, it can be brute forced. In Internet terms, 128-bit encryption is basically the standard. On really top-of-the-line "quantum" encryption, you're looking at 1-4 kilobit encryption. To have any chance of keeping people from decrypting your data before the statute of limitations runs out, you'd need terabit encryption, and even then, there's a chance that somebody brute-forcing the key will get lucky. Unless you have a PhD in cryptography, and are *really* motivated, you basically don't have a chance of encrypting your data such that it can't be decrypted. You can probably deter any recreational hackers, but if somebody knows what they're doing and has a reason to believe that you have something they want, you're an open book.




Now, since I feel like getting sidetracked, and I happen to enjoy cryptography, there is an encryption scheme that cannot be broken short of somebody intercepting the key. The problem is that this particular encryption scheme is incredibly bulky, and the moment you try to port it to a computer-based encryption/decryption, it's no longer unbreakable. I'm talking, of course, of a two-point encryption scheme, where you and I have identical books, each with hundreds of thousands of keys. On the order of 5 keys per page, 2,000 pages per volume, 10+ volumes. Each key different (how many permutations of 50 different characters are there?). In order to encrypt a message, I choose a page and a volume number, which gets sent with the message unencrypted. For each letter of the message (including spaces and punctuation), I use a different key, chosen sequentially. For you to decrypt the message, you *must* know which page to start on, otherwise, you cannot employ traditional cipher-breaking on it.

See, codebreaking, for substitution codes, relies on probability, and a little advance knowledge. In the English language, for example, the letter "E" is the most common, followed by "R", "T", and "S". In order to break a substitution code, I need a frequency table for each character in the encrypted message, and I need to make a few best-guesses based on the frequency of letters, until I get a short word or two that make sense. Other giveaways in English happen when you get a one-letter word. In English, there's exactly two one-letter words, so if your encrypted message has a one-letter word, you know that that character is either "A" or "I". Pretty much every language out there has similar patterns.

When each letter of an encrypted message is encoded using a different encryption key, such decryption method becomes useless, for obvious reasons. Incredibly bulky, but it's a way to guarantee that only two people can read the message. Of course, if a copy gets made of the decryption books, or if the books get stolen, you're still screwed.
 
Old 03-07-2005, 09:13 PM   #6
mortal
Member
 
Registered: Mar 2004
Location: Soviet Kanuckistan
Distribution: Slackware 12.2
Posts: 216

Rep: Reputation: 31
When the government that I work for sells computers they have to clean the hard drive.They have a foolproof method that no one can recover data from..Ever!!

First they remove the drive,then they ship it off to the local steel pipe plant where the hardrive is "purged" in a very large stone pot filled with molten metal.The only downside being that the hard drives are usually unusable afterwards.

Last edited by mortal; 03-07-2005 at 09:14 PM.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Need to migrate data from old HDD Jakeh2k1 Linux - Hardware 9 08-28-2005 03:23 PM
hdd data problem b4u Linux - Hardware 1 06-26-2005 10:52 AM
Installing a second HDD (with old data) conn-fused Linux - Hardware 2 10-08-2004 06:01 PM
Do i loose my data when i reparition my HDD exley Linux - Newbie 3 12-28-2003 06:12 PM
ways to secure data and information of corporate g_arun22 Linux - Security 3 06-01-2003 01:43 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 07:39 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration