You are not logged in.
Pages: 1
Salutations!
After reading the network manager ubuntu snafu (my Arch seems to suffer from it too), I've begun wondering if our current ACL mechanisms are useful for offline systems. The wifi passwords could only be obtained by viewing as the root account which mitigates online attacks, but obtaining the hdd or booting a live usb system on the same computer could allow one to still obtain the passwords. A method of mitigating this issue is full disk encryption. Instead of using the same key for all data (the root key), I was wondering if there'd be any benefit to encrypting individual user folders with a different key. Hence, in both the online and offline scenario, it'd be difficult to view another users' folders.
To use an analogy, instead of a child asking a parent to stop another child from viewing their diary, the child locks the diary.
Last edited by Bluerider (2014-01-02 21:25:32)
Offline
Pages: 1