[Gllug] USB Securikey

[Tethys]

David Damerell writes:

>>Of course, if you have physical access to the machine, you can always take
>>the hard drive out and put it in a machine of your choice. At which point,
>>the idea of encrypting the filesystem is about the only way to prevent your
>>data being lost
>
>A resourceful attacker would install a keystroke logger on the
>keyboard cable and hit the reset switch. You notice it's down and run
>up and type in the passphrase.

Keyboard? What are you blathering on about? This is a machine rackmounted
in a hosting centre. Is has no monitor or keyboard. Just a serial port
(the one true way). Of course, that's equally susceptible to having a
serial tap inserted...

Face it, if they've got physical access, you're screwed.

Tet

-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug