[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: Re: [Full-disclosure] Stealthier Internet access
From: T Biehn <tbiehn () gmail ! com>
Date: 2010-05-31 14:56:05
Message-ID: AANLkTilxehnZTYWNreMuYpWMCWWag66j4V6bhZnxmZ-T () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Bipin;
Firstly: You know what you did.
Secondly: Screw you for not crediting the master.
(I am the master, you are the dog.)
Greetz & Love, Harmonious Profitability!
-Travis
On Wed, May 26, 2010 at 1:03 AM, <Valdis.Kletnieks@vt.edu> wrote:
> On Wed, 26 May 2010 10:15:32 +0545, Bipin Gautam said:
> > > it's a *bad* sector, so reading and recovering the data is a bitch...
> >
> > No, storing in Negative Disk, bad sector, stenography, slack space are
> > all bad places to store data!
>
> No, I meant it's usually not worth worrying that if the disk has done a
> hardware assignment of a replacement sector for a *real* live actual
> the-hardware-barfs-on-it bad sector, you can usually not worry about the
> contents of that bad sector, as the drive hardware won't let you access it
> directly anymore, redirecting you to the new replacement block. So
> basically,
> somebody needs to take the disk apart and start doing the clean-room data
> recovery routine off the disk, trying to read 512 bytes of data at a time
> off
> known-physically-bad areas of the disk.
>
> And if your threat model includes adversaries that will do that, then
> you *really* need to be using full-disk encryption and thermite in your
> counter-defenses. Oh, and a good countermeasure for rubber-hose crypto. ;)
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
FD1D E574 6CAB 2FAF 2921 F22E B8B7 9D0D 99FF A73C
http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on
http://pastebin.com/f6fd606da
[Attachment #5 (text/html)]
Bipin;<br>Firstly: You know what you did.<br>Secondly: Screw you for not crediting the \
master.<br><br>(I am the master, you are the dog.)<br><br>Greetz & Love, Harmonious \
Profitability!<br><br>-Travis<br><br><div class="gmail_quote"> On Wed, May 26, 2010 at 1:03 AM, \
<span dir="ltr"><<a \
href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</a>></span> \
wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px \
solid rgb(204, 204, 204); padding-left: 1ex;"> <div class="im">On Wed, 26 May 2010 10:15:32 \
+0545, Bipin Gautam said:<br> > > it's a *bad* sector, so reading and recovering the \
data is a bitch...<br> ><br>
> No, storing in Negative Disk, bad sector, stenography, slack space are<br>
> all bad places to store data!<br>
<br>
</div>No, I meant it's usually not worth worrying that if the disk has done a<br>
hardware assignment of a replacement sector for a *real* live actual<br>
the-hardware-barfs-on-it bad sector, you can usually not worry about the<br>
contents of that bad sector, as the drive hardware won't let you access it<br>
directly anymore, redirecting you to the new replacement block. So basically,<br>
somebody needs to take the disk apart and start doing the clean-room data<br>
recovery routine off the disk, trying to read 512 bytes of data at a time off<br>
known-physically-bad areas of the disk.<br>
<br>
And if your threat model includes adversaries that will do that, then<br>
you *really* need to be using full-disk encryption and thermite in your<br>
counter-defenses. Oh, and a good countermeasure for rubber-hose crypto. ;)<br>
<br>_______________________________________________<br>
Full-Disclosure - We believe in it.<br>
Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" \
target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html</a><br> Hosted and \
sponsored by Secunia - <a href="http://secunia.com/" \
target="_blank">http://secunia.com/</a><br></blockquote></div><br><br clear="all"><br>-- \
<br>FD1D E574 6CAB 2FAF 2921 F22E B8B7 9D0D 99FF A73C<br><a \
href="http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on">http:// \
pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on</a><br> <a \
href="http://pastebin.com/f6fd606da">http://pastebin.com/f6fd606da</a><br>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic