Linux Vs Windows in security
Bart Silverstrim
bsilver at chrononomicon.com
Tue Aug 14 15:00:49 UTC 2007
Derek Broughton wrote:
> Cesar Augusto Suarez wrote:
>> In linux, i´ve seeing thats the same, with the live cd, if we have
>> physical access to the pc, we can change root access just by typing a new
>> pass.
>>
>> Then, where is really the security ?
>
> Of course. How would you propose to make a system truly secure if a hacker
> has physical access to the machine?
1) Buy big plastic storage tub from WalMart
2) place computer in tub
3) pour cement into tub, enveloping computer
4) Anchor cement block to floor with bolts
Just make sure you're not planning on moving your work area in the near
future. Oh, and the floor must be sturdy enough to hold a giant cement
block. Can't emphasize how embarrassing it is to have one of those
crash through your floor. Whoo boy!
> If I encrypt my filesystems, nobody with a liveCD can read the filesystem,
> but even then there must be something either in hardware or software that
> provides the key to decrypt that filesystem, which would be available to a
> user with physical access.
Like...a password in your memory?
Proper brute-forcing of an encryption scheme should take hundreds of
years, if not longer, to break, unless you are being hunted by the NSA
(in which case you have far bigger problems already) or you like using
your birthday or the word "god" as a password. It would be far easier
to torture you for the password.
More information about the ubuntu-users
mailing list