Slashdot Mirror

← Back to Stories (view on slashdot.org)

Passwords Can Sit on Hard Disks for Years

Posted by CmdrTaco on from the my-password-is-31337 dept.

CygnusXII writes ""As people spend more time on the web and hackers become more sophisticated, the dangers of storing personal information on computers are growing by the day, security experts say. There are some obvious safeguards, such as never allowing your computer to store your passwords. But even that is no guarantee of security." "

6 of 449 comments (clear)

  1. Zero the data by Lord+Grey · · Score: 5, Informative
    One way to achieve this is for all data in RAM to be automatically turned into a string of zeros once it is finished with - something he [Tal Garfinkel] says could be done with just a few extra lines of code in application programs.
    My company worked on a project a few years ago that required this very thing. It wasn't just passwords, though: The customer demanded that all data passing through the applications be wiped as soon as possible.

    The project was written in C++. We started out using a custom string class that performed its own memory management (with zeroing the buffer on deallocation), but then promptly ran into problems with the STL. We wound up writing a memory allocator that also cleans up after itself. Those two solutions took care of the vast majority of the data leakage "problem" -- the only thing left was reinitializing stack variables within functions.

    Perhaps the ultimate solution would be to encrypt data as it is entered, before it is saved into RAM, and arrange for programs that use it to decrypt it first.
    The same customer actually requested this first. The problems associated with it were were terrible, especially in a multithreaded application. Plus, performance basically sucked. Wiping the data afterwards seemed to have the same end result, the performance was still good, and the customer was happy.

    BTW, the memory allocator and string class both made their way into the company's downloadable core library (MIT license).

    --
    // Beyond Here Lie Dragons
    1. Re:Zero the data by Lord+Grey · · Score: 5, Informative
      Can you really be sure that the data is wiped? What if the memory is swapped to a page file or swap partition, later swapped back into memory and then you only erase what's in the RAM?

      You can either lock the RAM page so it doesn't swap, or force the page to write back out to swap after zeroing. The former is far easier (unless you want to do a lot of painful coding) and, if I remember correctly, was what was done with the project I talked about. I don't think the page locking/unlocking made it into the downloadable library, though.

      --
      // Beyond Here Lie Dragons
  2. Repairs by pubjames · · Score: 5, Informative


    One thing that worries me is sending machines away to get repaired.

    I have a Sony Vaio laptop which I had to send to be repaired. I phoned the support number to tell them I was going to take the hard disc out before sending it. They said that if I did I would be charged for a new hard disc (at a hugely inflated price) and they wouldn't repair it without one.

    I once sent a PC for repair and the teenage dork who repaired it actually said I had some great games on my machine and that he had played them. In another case in the UK, some padeophile was caught (was it Garry Glitter?) when he sent his PC in for repair. Now, I'm all for catching kiddie fiddlers, but that is not the way to do it.

    I don't want the repair staff looking through the stuff on my hard disc. There should be a standard industry guarantee that this won't happen, or a privacy law about it or something.

  3. Encrypt your disk by PSUspud · · Score: 5, Informative

    When I read the headline, I was alarmed. But
    then I read the article, and all my worries went away.
    I encrypt my swap partition, and that fixes the problem.

    It's not hard, and since it's swap (i.e., data
    you don't need for very long), you don't even need
    to remember a password (your computer uses a random
    one every time is sets up the swap). Really, it's
    pretty easy -- see the HOWTO at http://www.tldp.org/HOWTO/Disk-Encryption-HOWTO/
    and keep your goatsex links and pictures confidential.

    --
    ----- Why sig when you can sign? PGP key id 7675D05E
  4. Re:Hehe by Jokkey · · Score: 5, Informative

    The article does go into a bit more detail than that... They use a program called TaintBochs (probably hacked from the open source emulater Bochs) to track sensitive data and find out where exactly it goes and how long it's there. This sounds to me like a nifty hack, and they're actually doing research to come up with quantitative results on how long data sticks around, instead of just saying, "Um, yeah, stuff gets swapped out."

  5. Re:Hehe by operagost · · Score: 5, Informative
    Too bad he didn't discover the setting in Windows XP that clears the pagefile on shutdown. Instead, he plays programmer and suggests that only a few measly lines of code will fix the problem; and no one will mind the huge performance hit because computers are so fast already.

    Even if you aren't running Windows, other OSes like OS/2 will recreate a fresh pagefile on every boot.

    --

    Gamingmuseum.com: Give your 3D accelerator a rest.