From owner-freebsd-hackers@FreeBSD.ORG Mon Mar 7 21:17:50 2005 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62FFB16A4CE for ; Mon, 7 Mar 2005 21:17:50 +0000 (GMT) Received: from bcd.geek.com.au (geek.com.au [203.17.37.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id E078543D31 for ; Mon, 7 Mar 2005 21:17:48 +0000 (GMT) (envelope-from dan@geek.com.au) Received: by bcd.geek.com.au (Postfix, from userid 106) id ED79C49FA8; Tue, 8 Mar 2005 08:17:43 +1100 (EST) Date: Tue, 8 Mar 2005 08:17:43 +1100 From: Daniel Carosone To: soralx@cydem.org Message-ID: <20050307211743.GD20827@bcd.geek.com.au> Mail-Followup-To: soralx@cydem.org, freebsd-hackers@FreeBSD.ORG, tech-security@NetBSD.ORG, phk@phk.freebsd.dk, aleine@austrosearch.net References: <200503052027.j25KRmAF055472@marlena.vvi.at> <200503070940.49393.soralx@cydem.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="6zdv2QT/q3FMhpsV" Content-Disposition: inline In-Reply-To: <200503070940.49393.soralx@cydem.org> User-Agent: Mutt/1.4.2.1i X-Mailman-Approved-At: Tue, 08 Mar 2005 13:06:42 +0000 cc: aleine@austrosearch.net cc: freebsd-hackers@FreeBSD.ORG cc: phk@phk.freebsd.dk cc: tech-security@NetBSD.ORG Subject: Re: FUD about CGD and GBDE X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Mar 2005 21:17:50 -0000 --6zdv2QT/q3FMhpsV Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Mar 07, 2005 at 09:43:13AM -0700, soralx@cydem.org wrote: >=20 > > I also believe that it would be beneficial to implement regular rewriti= ng > > of randomly picked lock sector(s) at random times during a user specifi= ed > > interval (up to x rewrites within n seconds) in order to further obscure > > the write pattern and provide additional protection for lock sectors. >=20 > I agree.=20 I don't. Hiding the lock sector is pointless for hot disk attacks. A malicious SAN administrator (and other intermediaries, if transport encryption is not used) can identify the lock sector trivially, because gbde decrypts its location and tells you: it goes straight there on startup. -- Dan. --6zdv2QT/q3FMhpsV Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (NetBSD) iD8DBQFCLMT3EAVxvV4N66cRAjwdAJ0YIII6Wru0sABfMfvTFlwUCqtPuQCfSKMH s4GFYA0kk/bKutoV5VCVCho= =Vbqw -----END PGP SIGNATURE----- --6zdv2QT/q3FMhpsV--