this post was submitted on 30 Nov 2023
33 points (92.3% liked)

Linux

48176 readers
678 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] ipsirc@lemmy.world 50 points 11 months ago (3 children)
[–] lukas@lemmy.haigner.me 8 points 11 months ago

Lists of things not to do:

  • (NEW!) Go through airport security with an encrypted laptop, sensitive information and free conference stickers showing your affiliations as an activist. Let airport security confiscate your laptop. Airport security drugs and wrenches you. You give them your laptop password. The police arrests you based on suspicions of terrorism.
[–] fl42v@lemmy.ml 7 points 11 months ago* (last edited 11 months ago)

Except when your drive is encrypted you can easily destroy its contents. Let's say you're DorkPirate1337 who happens to care about their opsec; you luksEncrypt your drive and have a simple script that runs when a specific USB key is disconnected, triggers luksErase, and then poweroffs. Voila, when the school principal snatches your unlocked laptop while you're in the lib, all your pirated hentai becomes permanently unaccessible whether you give up the password or not. [Edit: the USB key is strapped to your wrist]

Note: luks uses 2 encryption keys, where one is randomly generated and encrypts the actual data, and the second one is given by the user and encrypts the first one; luksErase destroys the luks header containing that first key

[–] conciselyverbose@kbin.social 1 points 11 months ago

Not that other means of accessing the passwords aren't worth considering, but in the real world, it takes a lot more for someone to actually coerce your password from you than to use unencrypted storage.

I generally like xkcd, but this is a harmful trivialization of the value of encryption. In the real world, anything that isn't encrypted is negligent as hell. There's no valid reason not to do it, with maybe the exception of a thumb drive you're sharing across a computers you don't control and are clearly aware is not secure.