Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
07-04-2012, 02:30 PM
|
#1
|
LQ Newbie
Registered: May 2009
Posts: 2
Rep:
|
Is totally secure information possible?
I can purchase a USB stick on Amazon that is very secure. Can I put on this stick some simple version of Linux that will self boot and then have on the stick a copy of Libre so that I can use word processing to record information without leaving a trace on my computer? There are many persons that I should think would have a reason to want an information record that is totally secure. My understanding is that if information is used that goes interactively on a hard disk that this information can be retrieved unless the entire hard drive is rewritten over many times. This is not really practicable. So my desire is to have the operating system and the program on the stick and use them and then remove the stick and have no trace left of the activity on the computer.
If this is possible, I would appreciate a suggestion as to what simple version of Linux might be appropriate for this rather simple activity. I would like the version of Linux and Libre to not take up more than three gigabytes, leaving one gigabyte for the records.
|
|
|
07-04-2012, 02:37 PM
|
#2
|
LQ Addict
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
|
Why not just encrypt your hard drive? Only the NSA should be able to get in then.
If you must use a USB stick then you can install any smaller Linux distro onto your stick, say Puppy for example, and use it as if it were a hard disk drive -- provided your motherboard is able to boot from USB (otherwise use a live CD which allows USB cor storage).
This may give you something to think about : https://help.ubuntu.com/community/Fu...ncryptionHowto
Last edited by 273; 07-04-2012 at 02:43 PM.
|
|
|
07-04-2012, 02:45 PM
|
#3
|
Moderator
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 17,148
|
There is no 100% security. Ever. As far as I know, it is even possible to retrieve data from the RAM after shutting the machine down. There are also other methods of stealing your data ( TEMPEST).
For the normal user an encrypted disk should be more than secure enough.
|
|
|
07-04-2012, 02:49 PM
|
#4
|
Moderator
Registered: Mar 2008
Posts: 22,126
|
"I can purchase a USB stick on Amazon that is very secure."
I don't know what this is if you don't tell us. I suspect it would be a very poor choice for linux. A simple common usb would be a better choice. What you might be looking at is a thing that needs some windows app to run it.
TobiSGD and 273 both offer an idea to use encryption. A normal usb can be used on most modern distro's just as if it were a real hard drive. That means you can use encryption on it.
Why do you need such security?
|
|
|
07-04-2012, 03:04 PM
|
#5
|
LQ Addict
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
|
Quote:
Originally Posted by TobiSGD
There is no 100% security. Ever. As far as I know, it is even possible to retrieve data from the RAM after shutting the machine down. There are also other methods of stealing your data ( TEMPEST).
For the normal user an encrypted disk should be more than secure enough.
|
Agreed about never being completely secure (without a bunker) but didn't want to complicate matters.
For completeness sake my statement about only the NSA getting access was referring to the data on the hard drive after complete shutdown. Even a short time after that, as TbiSGD says, data is stored in RAM so you'd have to wait around an hour or so to be certain.
Another avenue of attack on an unatended, but locked, host is use of firewire (and other?) debugging built into some motherboards.
Oh and using hardware you don't have full physical control over is a complete no-no: leave the room to go to the bathroom and someone could install a hardware keylogger on your own PC and you should expect all machines you don't control to have keyloggers, packet sniffing (including man-in-the-middle https decryption), installed.
Last edited by 273; 07-04-2012 at 03:08 PM.
|
|
|
07-04-2012, 08:49 PM
|
#6
|
LQ Guru
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Ubuntu MATE, Mageia, and whatever VMs I happen to be playing with
Posts: 19,590
|
If Amazon is claiming the USB stick is totally secure and you want to use it with Linux, make sure it's not using some Windows *.exe to maintain that security (which is probably some sort of encryption). The *.exe will not work on Linux. I say that because I have a USB stick that came with some Windows encryption program on it (which I never bothered to use, but it was there).
The only totally secure computer is one that is turned off, disconnected from all external connections, encased in concrete, and never turned on again.
Last edited by frankbell; 07-04-2012 at 08:52 PM.
|
|
|
07-05-2012, 07:49 AM
|
#7
|
Member
Registered: Aug 2007
Location: India
Distribution: Slackware (mainly) and then a lot of others...
Posts: 855
Rep:
|
@OP if it is not your computer - did you check if there were keyloggers installed .
Joking apart - 'a secure usb' is something I am not able to et my head around. Apart from that the posts that mentioned encryption should help.
|
|
|
07-05-2012, 08:58 AM
|
#8
|
LQ Addict
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
|
There are USB sticks with built in AES hardware but I've not seen one yet which works on Linux as they tend to rely on a seperate read-only partition of some kind which runs software to interact with the encrypted partition. The only way around that is to have a keyboard built into the device but obviously this wouldn't work with USB as it does on the hard drives which are out there.
|
|
|
07-13-2012, 08:10 AM
|
#9
|
LQ Newbie
Registered: May 2009
Posts: 2
Original Poster
Rep:
|
Thank you
Can't find "thread tools" to check the "resolved issue" button. Am amazed at how many quality responses that I received. In answer to why I wanted a secure place to store information, this was a request to me from my sister, a lawyer. I suppose this has something to do with her work. Her son has her using Ubuntu. So at least she is free of the commercial software problems.
|
|
|
07-13-2012, 08:14 AM
|
#10
|
LQ Addict
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
|
You should see a link towards the top of the page to mark this as solved.
I would suggest that, if she isn't already, your sister looks into using an encrypted home partition.
|
|
|
All times are GMT -5. The time now is 08:39 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|