'Re: [Full-disclosure] Stealthier Internet access'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    Re: [Full-disclosure] Stealthier Internet access
From:       T Biehn <tbiehn () gmail ! com>
Date:       2010-05-31 14:56:05
Message-ID: AANLkTilxehnZTYWNreMuYpWMCWWag66j4V6bhZnxmZ-T () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Bipin;
Firstly: You know what you did.
Secondly: Screw you for not crediting the master.

(I am the master, you are the dog.)

Greetz & Love, Harmonious Profitability!

-Travis

On Wed, May 26, 2010 at 1:03 AM, <Valdis.Kletnieks@vt.edu> wrote:

> On Wed, 26 May 2010 10:15:32 +0545, Bipin Gautam said:
> > > it's a *bad* sector, so reading and recovering the data is a bitch...
> >
> > No, storing in Negative Disk, bad sector, stenography, slack space are
> > all bad places to store data!
>
> No, I meant it's usually not worth worrying that if the disk has done a
> hardware assignment of a replacement sector for a *real* live actual
> the-hardware-barfs-on-it bad sector, you can usually not worry about the
> contents of that bad sector, as the drive hardware won't let you access it
> directly anymore, redirecting you to the new replacement block.  So
> basically,
> somebody needs to take the disk apart and start doing the clean-room data
> recovery routine off the disk, trying to read 512 bytes of data at a time
> off
> known-physically-bad areas of the disk.
>
> And if your threat model includes adversaries that will do that, then
> you *really* need to be using full-disk encryption and thermite in your
> counter-defenses.  Oh, and a good countermeasure for rubber-hose crypto. ;)
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
FD1D E574 6CAB 2FAF 2921  F22E B8B7 9D0D 99FF A73C
http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on
http://pastebin.com/f6fd606da

[Attachment #5 (text/html)]

Bipin;<br>Firstly: You know what you did.<br>Secondly: Screw you for not crediting the \
master.<br><br>(I am the master, you are the dog.)<br><br>Greetz &amp; Love, Harmonious \
Profitability!<br><br>-Travis<br><br><div class="gmail_quote"> On Wed, May 26, 2010 at 1:03 AM, \
<span dir="ltr">&lt;<a \
href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</a>&gt;</span> \
wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px \
solid rgb(204, 204, 204); padding-left: 1ex;"> <div class="im">On Wed, 26 May 2010 10:15:32 \
+0545, Bipin Gautam said:<br> &gt; &gt; it&#39;s a *bad* sector, so reading and recovering the \
data is a bitch...<br> &gt;<br>
&gt; No, storing in Negative Disk, bad sector, stenography, slack space are<br>
&gt; all bad places to store data!<br>
<br>
</div>No, I meant it&#39;s usually not worth worrying that if the disk has done a<br>
hardware assignment of a replacement sector for a *real* live actual<br>
the-hardware-barfs-on-it bad sector, you can usually not worry about the<br>
contents of that bad sector, as the drive hardware won&#39;t let you access it<br>
directly anymore, redirecting you to the new replacement block.  So basically,<br>
somebody needs to take the disk apart and start doing the clean-room data<br>
recovery routine off the disk, trying to read 512 bytes of data at a time off<br>
known-physically-bad areas of the disk.<br>
<br>
And if your threat model includes adversaries that will do that, then<br>
you *really* need to be using full-disk encryption and thermite in your<br>
counter-defenses.  Oh, and a good countermeasure for rubber-hose crypto. ;)<br>
<br>_______________________________________________<br>
Full-Disclosure - We believe in it.<br>
Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" \
target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html</a><br> Hosted and \
sponsored by Secunia - <a href="http://secunia.com/" \
target="_blank">http://secunia.com/</a><br></blockquote></div><br><br clear="all"><br>-- \
<br>FD1D E574 6CAB 2FAF 2921  F22E B8B7 9D0D 99FF A73C<br><a \
href="http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&amp;op=index&amp;fingerprint=on">http:// \
pgp.mit.edu:11371/pks/lookup?search=tbiehn&amp;op=index&amp;fingerprint=on</a><br> <a \
href="http://pastebin.com/f6fd606da">http://pastebin.com/f6fd606da</a><br>



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic