|
so does that literally just erase the drive when the cable is unplugged? gee, sure is good that laptop usb ports never just, like, randomly lose a connection when gently moved or for no reason at all
|
#
?
Jan 3, 2020 03:45
|
|
|
|
| # ? Apr 26, 2024 07:19 |
|
|
Sagebrush posted:so does that literally just erase the drive when the cable is unplugged? well it's a udev rule so it does whatever you want when the cable is unplugged assuming it works, and as with most things linux you'll just have to trust it to work the way you intended
|
|
#
?
Jan 3, 2020 03:46
|
|
|
i just had some hackers turn my usb into a bomb!! for free
|
|
#
?
Jan 3, 2020 04:06
|
|
|
Krankenstyle posted:i just had some hackers turn my usb into a bomb!! for free awesome thing is, they even camouflaged my brand new macbook to look like an older dell so it's not a target for thieves. They did a great job, if I didn't know better I'd swear it's a real inspiron. OS swap and everything, runs older games through the emulation just fine.
|
|
#
?
Jan 3, 2020 04:47
|
|
|
Sagebrush posted:so does that literally just erase the drive when the cable is unplugged? rebooting (and flushing the FDE keys out of ram) would basically do the same thing but non-destructively Raere posted:if you have a "security critical" laptop, it shouldnt be in places where people can steal it from you, hth ross ulbricht’s big fuckup wasn’t using his security critical laptop in a public place, it was being on-call, reliable, and continuing to be in US jurisdiction after he loving talked to feds about Silk Road on his doorstep now imagine instead of a guy running a murder for hire brokerage it’s a whistleblower like chelsea manning; for some kinds of “security critical” a public place is very good
|
|
#
?
Jan 3, 2020 05:20
|
|
|
the best secure public laptop I can come up with would run the OS in ram only and use facial recognition to constantly auth the user and reboot if it’s been too long
|
|
#
?
Jan 3, 2020 06:12
|
|
|
Perplx posted:the best secure public laptop I can come up with would run the OS in ram only and use facial recognition to constantly auth the user and reboot if it’s been too long if it uses facial recognition to unlock couldnt you just point the laptop at the guy you have in custody?
|
|
#
?
Jan 3, 2020 06:30
|
|
|
only use the lack of face to lock/erase/etc.
|
|
#
?
Jan 3, 2020 06:48
|
|
|
LastInLine posted:if it uses facial recognition to unlock couldnt you just point the laptop at the guy you have in custody? Program it so a special facial expression wipes the laptop. I suggest tongue sticking out.
|
|
#
?
Jan 3, 2020 08:28
|
|
|
the Supreme Court have ruled that the police can forcibly extract your tongue with pliers
|
|
#
?
Jan 3, 2020 11:43
|
|
|
Cocoa Crispies posted:rebooting (and flushing the FDE keys out of ram) would basically do the same thing but non-destructively chelsea manning was not a whistle blower. she indiscriminately dumped gigs of data without any idea of what was in it because she was pissed at her chain of command. i’m not going to say she didn’t have a rough time in the army, because she did. it was not a good place for her, and she struggled from the start. the army is a lovely place that does horrible things to people. whistleblowers, though, raise specific problems such as snowden and the nsa. all she did was just log onto secure systems and gave it all to assange. she also wasn’t doing this in a public place. this was while deployed to iraq. e: the fact that there happened to be some bad poo poo in what she dumped is just retroactive justification. she didn't care about what she was dumping. i am in no way trying to defend the horrible poo poo the usa does, and all of that should be exposed. that wasn't chelsea's goal at the time, though. Mr. Nice! fucked around with this message at 13:47 on Jan 3, 2020 |
|
#
?
Jan 3, 2020 13:25
|
|
|
Mr. Nice! posted:is there a use case for that type of device that isn't running silkroad from public libraries or child porn?
|
|
#
?
Jan 3, 2020 13:48
|
|
|
evil_bunnY posted:if you can run stuff it on BT instead, sure. Plenty of places (like the US border) you don't want your laptop exiting direct custody. But the present implementation is a clear attempt at tech'ing your way out of a ulbricht opsec problem. i hadn't actually thought about border crossings. that's an actual use case for protecting privacy because gently caress ice.
|
|
#
?
Jan 3, 2020 14:04
|
|
|
the solution is to not run drug sites out of a Starbucks
|
|
#
?
Jan 3, 2020 14:16
|
|
|
Potato Salad posted:the solution is to not run drug sites out of a Starbucks
|
|
#
?
Jan 3, 2020 14:20
|
|
|
Potato Salad posted:the solution is to not run drug sites out of a Starbucks You mean caffeine distribution centers.
|
|
#
?
Jan 3, 2020 14:21
|
|
|
Potato Salad posted:the solution is to not run drug sites out of a Starbucks sounds like something a cop would say
|
|
#
?
Jan 3, 2020 14:48
|
|
|
Mr. Nice! posted:chelsea manning was not a whistle blower. she indiscriminately dumped gigs of data without any idea of what was in it because she was pissed at her chain of command. ah yes snowden, who carefully released documents relating to a specific wrongdoing by *checks notes* logging into secure systems and indiscriminately dumping gigs of data without any idea of what was in it and giving it all to greenwald, but it’s ok because there happened to be some bad poo poo in what he dumped? I don’t really see much distinction, except that manning is a more sympathetic person, and snowden accidentally managed to reveal more bad things that he had no idea were in the data he leaked
|
|
#
?
Jan 3, 2020 15:00
|
|
|
Theyre both heroes. Thanks,
|
|
#
?
Jan 3, 2020 15:03
|
|
|
So couple apps I've recently worked on: 1. Mobile app that shows unlimited customer location data. App may be used at unattended desks and anyone can just walk up, find a name, and happily head off to assassinate someone. I suggested a second pin entry to open the app but was told but this... insufferable, cocky poo poo that "security is the users job, not ours". The username and password are stored on the device, not a token or cookie. 2. Mobile and web app that again shows thousands of people's location each and everyday, and for some reason, their phone number, email address, full name and date a a purchase. This app can be used by pretty low-level employees so all they need to do is start calling these people, tell them their transaction of X didn't go through on X date, and that they need to run their credit card again. Moreover, we're partnered with a competitor for this. So we're giving them our customers data, effectively losing a customer. 3. Another app has no authentication (yet?) and you pass an (unvalidated) IP address, email, userId, loggedIn, and half a dozen other useless data on every request. Somehow from this, security is assured. Documentation wise, there's a Swagger, but it's nothing but a long list of poorly named endpoints, "required" fields that we're later told are not required (see above), and no way to run a query because there's only one magic user ID that will return anything. 4. On the contrary, everything... everything else is guarded like a fortress. To make a Slack integration: it'll take two weeks after a request in a special Jira board. Gmail, Slack, Github, all took weeks for my first hire to get. There's VPNs for mostly any API, and they seem to change their VPN tech twice monthly. I remember I had to record a video of our app some exec couldn't get on the VPN at a tradestow. Why is there so much secrecy behind a mostly empty staging API? Likely... it's not a staging API but the real deal.They built the back-end in such a hurry that they can't duplicate it for testing, or something.
|
|
#
?
Jan 3, 2020 15:17
|
|
|
I read half of that without looking at the poster and thought "wait did pleasurekevin get a new job?", looked up at the avatar and lol have a pleasureable 2020
|
|
#
?
Jan 3, 2020 16:23
|
|
|
how did your bitcoin job go by the way
|
|
#
?
Jan 3, 2020 16:25
|
|
|
Soricidus posted:ah yes snowden, who carefully released documents relating to a specific wrongdoing by *checks notes* logging into secure systems and indiscriminately dumping gigs of data without any idea of what was in it and giving it all to greenwald, but it’s ok because there happened to be some bad poo poo in what he dumped? Learning the army's civilian kill count was huge, learning of the live target practice covered up by a bomb was horrifying--but further confirmation that US's accounts on Tiananmen Square protests were false--that's perhaps not something the media would choose to disclose from a trove in the following new cycles. After all the footage of napalm, murder rape; the confessions of what led to war being bogus; the most inhumane torture; war, assassination and regime change all over the globe; spying, even on allies; not to mention the trade war with China and the creation of a new Al Qaeda in Hong Kong. I mean, dumping details on their activity can help countries defend themselves, lead to civil cases and at least keep a more accurate historical record of history's largest, most brutal empire. To pick only a few choice headlines to blow the whistle on while withholding the truth on other crimes and corruption just seems more abetting the imperialists.
|
|
#
?
Jan 3, 2020 16:25
|
|
|
Shame Boy posted:how did your bitcoin job go by the way I haven't talked about it cause I wanted to sue. After pulling my rear end out of depression (have I?), I called around and they all wanted money just to talk about the situation. I finally just reported them to immigration authorities for human trafficking. Have not heard back.
|
|
#
?
Jan 3, 2020 16:28
|
|
|
PleasureKevin posted:I haven't talked about it cause I wanted to sue. that good huh, well at least it can't get an- PleasureKevin posted:After pulling my rear end out of depression (have I?), I called around and they all wanted money just to talk about the situation. I finally just reported them to immigration authorities for human trafficking. Have not heard back. hahah holy poo poo 
|
|
#
?
Jan 3, 2020 16:39
|
|
|
Mr. Nice! posted:[chelsea manning] also wasn’t doing this in a public place. this was while deployed to iraq. use some creativity, imagine like some mckinsey partner grabbing documents from the work vpn and throwing them on tor from an sbux accept that it is possible for people to do good things that they don't want to be implicated in
|
|
#
?
Jan 3, 2020 16:41
|
|
|
Cocoa Crispies posted:accept that it is possible for people to do good things that they don't want to be implicated in you're obviously correct but do you really think that a usb cable attached to a carabiner will help whistleblowers in a meaningful way?
|
|
#
?
Jan 3, 2020 16:49
|
|
|
Achmed Jones posted:you're obviously correct but do you really think that a usb cable attached to a carabiner will help whistleblowers in a meaningful way? yeah. manning was caught because someone snitched on her and snowden successfully defected to that bastion of free speech and openness, russia (lol). neither would have been helped by a device that prevented them having a laptop snatched, and indeed I rather think that at the point the feds are in the same room as you reaching for your laptop, you’re probably already screwed
|
|
#
?
Jan 3, 2020 17:06
|
|
|
Achmed Jones posted:you're obviously correct but do you really think that a usb cable attached to a carabiner will help whistleblowers in a meaningful way? expect? not really. hope? sure. it's more interesting to think about than business tyrants abusing a fellow poster for sure though
|
|
#
?
Jan 3, 2020 17:07
|
|
|
Soricidus posted:yeah. manning was caught because someone snitched on her and snowden successfully defected to that bastion of free speech and openness, russia (lol). neither would have been helped by a device that prevented them having a laptop snatched, and indeed I rather think that at the point the feds are in the same room as you reaching for your laptop, you’re probably already screwed screwed comes in degrees and if ross didn't have mycrimes.txt open and image-able he might not die in federal prison
|
|
#
?
Jan 3, 2020 17:09
|
|
|
Cocoa Crispies posted:screwed comes in degrees and if ross didn't have mycrimes.txt open and image-able he might not die in federal prison some stories do have happy endings 
|
|
#
?
Jan 3, 2020 17:25
|
|
|
Cocoa Crispies posted:screwed comes in degrees and if ross didn't have mycrimes.txt open and image-able he might not die in federal prison they already knew he was doing murder for hire since the hitmen he paid were undercover agents if it was just drugs he probably would have gotten 20 years and been out in 10
|
|
#
?
Jan 3, 2020 17:30
|
|
|
PleasureKevin posted:I haven't talked about it cause I wanted to sue. After pulling my rear end out of depression (have I?), I called around and they all wanted money just to talk about the situation. I finally just reported them to immigration authorities for human trafficking. Have not heard back. So wait, you wanted to try to go to civil court with literal slavers? Is there a thread somewhere for this?
|
|
#
?
Jan 3, 2020 17:34
|
|
|
Achmed Jones posted:you're obviously correct but do you really think that a usb cable attached to a carabiner will help whistleblowers in a meaningful way? the makers of TAILS must think it doesn’t hurt, because pulling the liveusb triggers an immediate wipe-RAM-and-shutdown (USER WAS PUT ON PROBATION FOR THIS POST)
|
|
#
?
Jan 3, 2020 17:44
|
|
|
Soricidus posted:snowden successfully defected to that bastion of free speech and openness, russia (lol). Presumably, assuming you're not completely retarded, you know this wasn't actually the plan, and that he was trapped in the airport transit zone for 6 weeks after the US revoked his travel documents before being granted political asylum You will also recall this was around the same time the US state department got various European countries to deny Evo Morales' plane passage through their airspace on claims of "technical problems", forcing it to land in Austria, on the mistaken belief that he was smuggling Snowden out of their reach (USER WAS PUT ON PROBATION FOR THIS POST)
|
|
#
?
Jan 3, 2020 18:37
|
|
|
The_Franz posted:they already knew he was doing murder for hire since the hitmen he paid were undercover agents one of the agents working that case was stealing bitcoin (or stealing money to buy bitcoin - can't remember) and possibly doing some other crimes, so it would have been kind of a mess to prosecute. this agent is the Carl Mark Force IV people will sometimes still namedrop in the coiner thread because just his drat name is ridiculous
|
|
#
?
Jan 3, 2020 19:16
|
|
|
Mr. Nice! posted:i hadn't actually thought about border crossings. that's an actual use case for protecting privacy because gently caress ice. Being used to Eastern Europe I can immediately think of half a dozen legitimate use cases for tech like this.
|
|
#
?
Jan 3, 2020 19:23
|
|
|
Mr. Nice! posted:i hadn't actually thought about border crossings. that's an actual use case for protecting privacy because gently caress ice. are we still talking about the usb thingy? because that doesnt seem effective for the boarder crossing since the device shouldnt be open and in using during customs i have to imagine that if you're concerned about state actors (like a democracy activist in a non-democracy) you probably need something slightly more discrete than their poc. being the person in the internet cafe with a laptop attached to their belt probably would get noticed
|
|
#
?
Jan 3, 2020 19:29
|
|
|
Storysmith posted:the makers of TAILS must think it doesn’t hurt, because pulling the liveusb triggers an immediate wipe-RAM-and-shutdown Where's the slur??
|
|
#
?
Jan 3, 2020 19:52
|
|
|
|
| # ? Apr 26, 2024 07:19 |
|
|
Trabisnikof posted:are we still talking about the usb thingy? because that doesnt seem effective for the boarder crossing since the device shouldnt be open and in using during customs Storysmith posted:the makers of TAILS must think it doesn’t hurt, because pulling the liveusb triggers an immediate wipe-RAM-and-shutdown
|
|
#
?
Jan 3, 2020 19:52
|
|