public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
From: Dale <rdalek1967@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Password questions, looking for opinions. cryptsetup question too.
Date: Tue, 19 Sep 2023 21:52:03 -0500	[thread overview]
Message-ID: <616003c9-adff-110c-8302-d8a8a6745bbe@gmail.com> (raw)
In-Reply-To: <3258388.44csPzL39Z@lenovo>

Michael wrote:
> On Tuesday, 19 September 2023 12:13:40 BST Dale wrote:
>> Hmmmm,
>>
>> For some reason, I didn't get Michael's email.  I see him being quoted
>> but don't have his original.  I wonder what is up with that.  O-o
> Assuming you will receive this message, have a look here:
>
> https://marc.info/?l=gentoo-user&m=169511184714476&w=2
>
>
>> Rich Freeman wrote:
>>> On Tue, Sep 19, 2023 at 4:26 AM Michael <confabulate@kintzios.com> wrote:
>>>> On Tuesday, 19 September 2023 06:36:13 BST Dale wrote:
>>>>> Howdy,
>>>> A strong
>>>> password, like a strong door lock, buys you time.  Hence the general
>>>> recommendation to change your passwords frequently.
>>> While that can help on websites, it is of no use for full disk
>>> encryption passwords - at least not without jumping through some big
>>> hoops.
>>>
>>> In order to crack your LUKS password somebody obviously needs to be
>>> able to read the encrypted contents of your disk.  They cannot begin
>>> cracking it until they have a copy of the LUKS headers.  However, once
>>> they do have it, they can make a copy and crack it at their leisure.
>>> If they manage to crack it, then it will give them the volume key.  At
>>> that point if they were able to make a full copy of your disk they can
>>> read whatever was on it at the time.  If they can make a fresh copy of
>>> your disk then changing the passphrase will not change the volume key,
>>> and so they'll be able to read what is currently on your disk.
>>>
>>> Changing the volume key would defeat this, but requires running
>>> cryptsetup-reencrypt which will take considerable time/CPU, though it
>>> sounds like it can be done online.
>> Let's jump into a hypothetical here.  Let's say I'm a nasty terrorist or
>> some other really evil dude.  Let's say I have passwords are that really
>> good.  Let's say around 20 characters and a really nice mix of
>> characters.  If some gov't agency got my hard drive, how long would it
>> take for them to crack it?
> A couple of minutes?
>
> https://xkcd.com/538/
>
> :-)


I did get this one.  I also got the other message, I think at the same
time.  It sure did arrive late tho.  I have mine set up to view as
threads.  This thread looked odd until it got the previous message. 
Must have got hung up somewhere.  Maybe a server somewhere had to reboot
and it took a while.  ROFL 

I like the cartoon.  In some countries, that would likely be a first
option.  :/

Dale

:-)  :-) 



  parent reply	other threads:[~2023-09-20  2:52 UTC|newest]

Thread overview: 35+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2023-09-19  5:36 [gentoo-user] Password questions, looking for opinions. cryptsetup question too Dale
2023-09-19  8:26 ` Michael
2023-09-19  9:10   ` Jude DaShiell
2023-09-20  2:41     ` Dale
2023-09-20  2:59       ` [gentoo-user] " Grant Edwards
2023-09-20  4:49         ` Dale
2023-09-20 20:22           ` Frank Steinmetzger
2023-09-20 20:51             ` Rich Freeman
2023-09-20 21:56               ` Frank Steinmetzger
2023-09-20  6:47       ` [gentoo-user] " hitachi303
2023-09-23 10:57     ` Wols Lists
2023-09-19 10:00   ` Rich Freeman
2023-09-19 11:13     ` Dale
2023-09-19 11:47       ` Michael
2023-09-19 13:30         ` hitachi303
2023-09-20  2:52         ` Dale [this message]
2023-09-20  4:19   ` Dale
2023-09-20 12:28     ` Michael
2023-09-20 18:05       ` Frank Steinmetzger
2023-09-23 12:39         ` Wols Lists
2023-09-23 13:35           ` Dale
2023-09-23 14:00             ` Wol
2023-09-23 15:05               ` Dale
2023-09-23 16:08                 ` Rich Freeman
2023-09-19  9:03 ` hitachi303
2023-09-19  9:13   ` Dale
2023-09-23 12:47     ` Wols Lists
2023-09-23 13:42       ` Dale
2023-09-23 15:44         ` Håkon Alstadheim
2023-09-19  9:16   ` Jude DaShiell
2023-09-19 11:22     ` Dale
2023-09-20 16:18 ` Hoël Bézier
2023-09-20 16:39   ` Jack
2023-09-20 17:54   ` Jude DaShiell
2023-09-27  9:43 ` [gentoo-user] " Nikos Chantziaras

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=616003c9-adff-110c-8302-d8a8a6745bbe@gmail.com \
    --to=rdalek1967@gmail.com \
    --cc=gentoo-user@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox