From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id D41D11381FA for ; Mon, 2 Jun 2014 12:06:15 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id F1196E0AD6; Mon, 2 Jun 2014 12:06:09 +0000 (UTC) Received: from mail-yh0-f54.google.com (mail-yh0-f54.google.com [209.85.213.54]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id E451DE0A7E for ; Mon, 2 Jun 2014 12:06:08 +0000 (UTC) Received: by mail-yh0-f54.google.com with SMTP id i57so3679064yha.41 for ; Mon, 02 Jun 2014 05:06:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=cQ574jns7+9AWRr0tfyHP9+RmSVVCjgwU5Hvp8lWI5Q=; b=qxLk6yQ4glYQzURE0ff/0qiLD/WDH9iibgVaIPl6Ow8vqvYzSPR7kAOiI5O2ZX5wbM UhOiyCkSows/scDlfH7A6dreZEJxPDWvkI3mXO4kn5Jkre4w1gCd226ppXVgychc40Op bFdcomDXv45Yzo0VY9JarK44SzMt44UP7pr8ZWruPTIPDEsW+ksoCJ4ifVKecdKn80FK sXM5dM2vPXeA5IsQqR0FS+1wNzmltSMmGN73FIjVldDxiUjFYuhajAKZzaa8yfs4kGhO H68tfoQQO/1kpTJ3udkiNM1P8Za3pKH3OZrf5UQne+IrAWZHaKgSq1EdnzR3RCZq+srF frxQ== X-Received: by 10.236.52.74 with SMTP id d50mr51732796yhc.44.1401710768067; Mon, 02 Jun 2014 05:06:08 -0700 (PDT) Received: from [192.168.2.5] (adsl-98-95-147-33.jan.bellsouth.net. [98.95.147.33]) by mx.google.com with ESMTPSA id c26sm20113388yha.4.2014.06.02.05.06.06 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 02 Jun 2014 05:06:07 -0700 (PDT) Message-ID: <538C68AE.5000504@gmail.com> Date: Mon, 02 Jun 2014 07:06:06 -0500 From: Dale User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:28.0) Gecko/20100101 Firefox/28.0 SeaMonkey/2.25 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Demise of Truecrypt - surprised I haven't seen t his discussed here yet? References: <538B1D0A.9070405@libertytrek.org> <538B66A1.6070106@googlemail.com> <538C344E.6050809@gmail.com> <538C42D3.6050205@googlemail.com> <20140602103422.39856e78@hactar.digimed.co.uk> <538C485F.5070901@gmail.com> <538C4C9A.5080107@gmail.com> <538C51A0.8050903@gmail.com> <20140602115624.214cbdbe@hactar.digimed.co.uk> In-Reply-To: X-Enigmail-Version: 1.6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Archives-Salt: a917b494-4877-465b-a9ce-bc0fc66d9cd8 X-Archives-Hash: 844fa97541a93fdb246b9f3e015b87e1 Rich Freeman wrote: > If you're worried about casual thieves then just about any kind of > properly-implemented encryption will stop them. > > If you're worried about a government official specifically tasked with > retrieving your computer, my understanding is that it is SOP these > days to retrieve your computer without powering it off for just this > reason. They won't use your UPS to do it. Typically they remove the > plug just far enough to expose the prongs, slide in a connector that > connects it to a UPS, and then they pull it out the rest of the way > now powered by the UPS. > > See something like: > http://www.cru-inc.com/products/wiebetech/hotplug_field_kit/ > > Presumably somebody who is determined will also have the means to > retrieve the contents of RAM once they seize your computer. Besides > directlly accessing the memory bus I think most motherboards are not > designed to be secure against attacks from PCI/firewire/etc. > > Rich > > Now that is wicked. Like I said, this could get crazy. ROFL Thing is, with Linux, it could be set up to run a script so that if say the keyboard/mouse/some other device is removed, it runs shutdown. It seems the biggest thing as for as Govt goes, having it do something they can't anticipate it doing that locks things down or does a rm -rfv /* or some other nasty command. I might add, on a older rig I tried that command once. I ran rm -rfv /* and it didn't erase everything like I thought it would. I figured the command would be loaded in ram and would run until the end of the / structure. It didn't. I can't recall how far it got now but I think it was in the /proc directory. I figure it deleted the process and sort of forgot to finish. It's been a while since I did that tho. Details are fuzzy. Dale :-) :-) -- I am only responsible for what I said ... Not for what you understood or how you interpreted my words!