Announcement

Collapse
No announcement yet.

Linux LiveCDs and computer security?

Collapse
This topic is closed.
X
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    Linux LiveCDs and computer security?

    There is an interesting podcast on the BBC at the moment: http://www.bbc.co.uk/iplayer/episode...4_Cyber_Spies/
    The criminal exploitation of the internet poses one of the biggest threats to UK national security. As organised crime gangs and terrorists use it to communicate and plan their activities, the police and security agencies are turning to hacking to conduct surveillance and gather intelligence.

    In the first of a new series, File on 4 looks at the covert techniques being used to get beyond the firewall of a suspect's PC. But are the tactics legal?
    It says they can interrogate the RAM, rather than the ROM? Do LiveCDs leave a trace on the RAM?
    "A problem well stated is a problem half solved." --Charles F. Kettering
    "Sometimes the questions are complicated and the answers are simple."--Dr. Seuss

    #2
    Re: Linux LiveCDs and computer security?

    Originally posted by arochester
    Do LiveCDs leave a trace on the RAM?
    Random-access memory
    Random-access memory (RAM) is a form of computer data storage. Today, it takes the form of integrated circuits that allow stored data to be accessed in any order with a worst case performance of constant time. Strictly speaking, modern types of DRAM are therefore not random access, as data is read in bursts, although the name DRAM / RAM has stuck. However, many types of SRAM, ROM, OTP, and NOR flash are still random access even in a strict sense. RAM is often associated with volatile types of memory (such as DRAM memory modules), where its stored information is lost if the power is removed.
    Windows no longer obstructs my view.
    Using Kubuntu Linux since March 23, 2007.
    "It is a capital mistake to theorize before one has data." - Sherlock Holmes

    Comment


      #3
      Re: Linux LiveCDs and computer security?

      Thanks for that.

      So the "problem" must only be in Internet cafes and libraries etc the power is not normally turned off...
      "A problem well stated is a problem half solved." --Charles F. Kettering
      "Sometimes the questions are complicated and the answers are simple."--Dr. Seuss

      Comment


        #4
        Re: Linux LiveCDs and computer security?

        Which points out the need, if you use a LiveCD or LiveUSB on a publicly accessible computer, to be able to power-cycle the computer, with a 10 or 15 second pause between to allow the capacitors on the mobo to discharge, after you finish using it for your personal business.
        "A nation that is afraid to let its people judge the truth and falsehood in an open market is a nation that is afraid of its people.”
        – John F. Kennedy, February 26, 1962.

        Comment


          #5
          Re: Linux LiveCDs and computer security?

          Originally posted by GreyGeek
          power-cycle the computer, with a 10 or 15 second pause between to allow the capacitors on the mobo to discharge, after you finish using it for your personal business.
          Indeed... otherwise, you're potentially vulnerable to one of the more esoteric attacks I've seen...

          Comment


            #6
            Re: Linux LiveCDs and computer security?

            I heard that the FBI used that technique using wart freezer fluid.
            "A nation that is afraid to let its people judge the truth and falsehood in an open market is a nation that is afraid of its people.”
            – John F. Kennedy, February 26, 1962.

            Comment


              #7
              Re: Linux LiveCDs and computer security?

              bloody hell freezing the ram that's a bit worrying, I wonder how practical it is really, although saying that the security services are probably further ahead with the technique than the "researchers from Princetown University",or if not they soon will be.

              Comment


                #8
                Re: Linux LiveCDs and computer security?

                Gee, let's see, I have an idea! Turn the PC off, grab your RAM, run.

                There are various ways to dd RAM and such, but they take time.
                An intellectual says a simple thing in a hard way. An artist says a hard thing in a simple way. Charles Bukowski

                Comment


                  #9
                  Re: Linux LiveCDs and computer security?

                  Originally posted by pasti
                  bloody hell freezing the ram that's a bit worrying, I wonder how practical it is really, although saying that the security services are probably further ahead with the technique than the "researchers from Princetown University",or if not they soon will be.
                  Practical enough that, during my time at Microsoft, we changed some documentation to urge people who use BitLocker to disable system sleep and only allow either hibernation or power off. That way the RAM eventually clears and a thief won't be able to extract encryption keys from memory (well, won't be able to after about 15 minutes, anyway, heh).

                  Comment

                  Working...
                  X