Domain: nah6.com
Stories and comments across the archive that link to nah6.com.
Comments · 8
-
Re:Sounds like a need for encrypted SMS.
There is a protocol (proposed standard). It uses RSA directly on the message, after mashing it, for space-efficiency.
-
NAH6's Secure-Notebook project covers this
Although Rop has moved on to other projects, Secure Notebook was a pretty good idea. The software may still be useful (documentation here, check the page for file signatures.)
IIRC, this was a secure-ified Debian with encrypted swap, encrypted partitions, running VMWare which ran Win2K as a guest o/s. The idea was to run Windows while treating it as a small child that keeps burning itself on the stove. Everything was filtered thru the Linux host o/s, including network and hardware access.
Also, I believe the encryption key was provided in two parts: a dongle containing part of the key, and then also a key requested of the user during boot.
Worth a look. -
NAH6's Secure-Notebook project covers this
Although Rop has moved on to other projects, Secure Notebook was a pretty good idea. The software may still be useful (documentation here, check the page for file signatures.)
IIRC, this was a secure-ified Debian with encrypted swap, encrypted partitions, running VMWare which ran Win2K as a guest o/s. The idea was to run Windows while treating it as a small child that keeps burning itself on the stove. Everything was filtered thru the Linux host o/s, including network and hardware access.
Also, I believe the encryption key was provided in two parts: a dongle containing part of the key, and then also a key requested of the user during boot.
Worth a look. -
NAH6's Secure-Notebook project covers this
Although Rop has moved on to other projects, Secure Notebook was a pretty good idea. The software may still be useful (documentation here, check the page for file signatures.)
IIRC, this was a secure-ified Debian with encrypted swap, encrypted partitions, running VMWare which ran Win2K as a guest o/s. The idea was to run Windows while treating it as a small child that keeps burning itself on the stove. Everything was filtered thru the Linux host o/s, including network and hardware access.
Also, I believe the encryption key was provided in two parts: a dongle containing part of the key, and then also a key requested of the user during boot.
Worth a look. -
Props to NAH6...
....for doing a PGP extension to Mailman.
The patch file alone is 56 KB... looks like they put in some effort on that one. Pretty cool. -
Props to NAH6...
....for doing a PGP extension to Mailman.
The patch file alone is 56 KB... looks like they put in some effort on that one. Pretty cool. -
Re:Encrypted File System
AFAIK linux doesn't have an encrypted FS, nor have I heard about anything under development. If any FS hackers are reading this, this would be a handy project if you're looking for something to do.
- Loopback-Encrypted-Filesystem-HOWTO
- secure notebook (runs windows in vmware, so even swapfile and hibernate file are encrypted!)
- Loopback-Encrypted-Filesystem-HOWTO
-
Using virtualization to secure your data...Damn, your post reminded me of another use, securing YOUR Windows YOUR way. I saw it demoed at H2K2 last july. I just can't remember the website addy. It boots debian, then runs vmware automatically and prompts for a secure password. It then loads Windows using a virtual drive. The drive is encrpyted. A USB dongle is also required. Remove the usb dongle, the puppy shuts down automatically. Debian runs without swap to hopefully eliminate any chance of the vmware session being swapped to unencrypted disk.
The guy demoing it is mainly meant to protect laptop data from common thieves, is targeted towards road warriors, and is not meant to keep the government out because if they arrest you and the laptop, they can coerce you into giving them access.
Ah yes, google rules. Here's a link to a story about it. Company name is NAH6.