From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 23E63198005 for ; Wed, 20 Mar 2013 04:23:52 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 2BD8DE052E; Wed, 20 Mar 2013 04:23:34 +0000 (UTC) Received: from mail2.viabit.com (mail2.viabit.com [65.246.80.16]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id C3CB3E049A for ; Wed, 20 Mar 2013 04:23:32 +0000 (UTC) Received: from [172.17.29.6] (vpn1.metro-data.com [65.213.236.242]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail2.viabit.com (Postfix) with ESMTPSA id 3ZVyg774nyz1hjM for ; Wed, 20 Mar 2013 00:23:31 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=orlitzky.com; s=mail2; t=1363753412; bh=saXbzk5aDLgyWtH6OVynX9Lc289ikMc5nm1syfxe0GU=; h=Date:From:To:Subject:References:In-Reply-To; b=DQ2qyjt3/xln3WAYKveXlFpTjaUlnI0vubzYDwdKdMe6N7F8Qa9dvjr5Y5oeCgaN4 MQuo4SybTj1nrRD2kZoz6g9QYd2as+kxgg+lXttlAWcUJV3jM4jiRtlVOtlpWjAvWM FpFvpx+3kPRMR2eKdt6Vt9mkIvDMJMKnLmXKKYgU= Message-ID: <514939A9.3030204@orlitzky.com> Date: Wed, 20 Mar 2013 00:23:05 -0400 From: Michael Orlitzky User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130126 Thunderbird/17.0.2 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Time-lock USB stick References: <514925C3.8020900@gmail.com> <51492A76.4010202@iinet.net.au> <51492CE9.4030508@gmail.com> In-Reply-To: <51492CE9.4030508@gmail.com> X-Enigmail-Version: 1.5 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: d9f75d75-193a-46ce-a1ff-6a408d1b7a5f X-Archives-Hash: d50fb721b1846562efea2b49ab094714 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 03/19/2013 11:28 PM, Michael Mol wrote: > > Not so much. The idea would be that you could power cycle the > device to get access to it again. The device would be read for the > keys at system bootup, but then would shut itself off after a few > minutes to prevent the keys from being read from disk. (There's > still the risk of them being read from the memory of the process > using them, but that's slightly more difficult, and security is all > about raising the bar.) > Eject the USB drive after five minutes? This raises the bar significantly, to "has tried to send the 'close CD tray' command to a USB stick before." -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (GNU/Linux) iQIcBAEBAgAGBQJRSTmpAAoJEBxJck0inpOiKusP/1sVI0A5hbT1pE8yRu+Ydn5W j+O6o9j+r2Tqzkay0/tXPWs8HJlM7c8yQcaRvQoCiau2mQzitSk+nLxCPh/GLpis 2d49ihFKmVFk7qrIzMkrHoV4XRc2jVfgiEq+n8W5dYpODPCX9N4MQidgiYePnZ52 YEtxijEkfPk73j5jPoJh6SNWtzrdLUC6DH4mmghqgmZcn4glkhWpqIU6U/tj4hJT iN67F5g0g8YSIQNTBsTO/TLrQmrHdb/iT2v9hTxeL+Ly+xjHKJmSikP+f0rOOrQn vXbJHGk2IAgajDHcdG3jDJvoQDgA0vl+uJ/i4tj++rwMNNXxX7MmFq9qGqGGjBp4 nwFVJn9QGMHq2boDXISXlz+zNcjLWcaxNrXQiqSB5sqnbvjg27/NCDaQG8+ZgWzX a/JGLqu3l7LoribH54E51PGdpKiiooDgYjgQkB9ZrSM6/X14JftqWavEALrLQXfM ud32XTgMGiBVqyjtGQ4VDS2KtQnZAWhORMQJvOx3nwApUiXOlyX8xoyazYetnTaC pZFgYRgmNYQodweJNrpz28EekEhwr1A/HHYhe5ANqUSO44xZBhsfEhtz0ycVd0ok 2JnCC4WwmQtqifD4S3hEsn4BN1XvxCH8YhXV6S+ApD9bo22ybZFw7f54tMSV0L/d brkafk2u3Bhnh2yFr+6k =pX91 -----END PGP SIGNATURE-----