pgp disk wipe : Chirst, according to this faq, on windows systems all passwords can beretrieved from the swap file. Are there any programming preventatives tothis? Other than working in dos"Locked" memory cannot enter the swap file, that's the point.deleting the swap file is a waste of time - it remains on the disk sectorsafter deleting.the swap file shrinks and grows as needed, so eventually bits of RAM arescattered all over disk sectors, but not in any file you can delete.you could "wipe" your swap and free space, but this again is pointlessbecause:-1. Most microsoft products use malloc() not calloc(), so bits of youruninitialised RAM end up saved inside all your files (take a look at your wordDOCs in a hex editor...)2. Most file operations which use seek() and don't deliberately overwriteanything they've seeked past end up "catching" whatever was on the disk in thefirst place - again getting bits of other file and swap stuff embedded in them pgp disk wipe : .... so, you can never "wipe" everything properly anyway, because it's not allin places that are wipeable.DOS under windows gets swapped out to disk too, so no added protection there.And how come I can't have a key which employs *all* the crypto methods? Whydo I have to pick only 2?I want DH/DSS *and* RSA *and* elliptic curve *all* *at* *the* *same* *time*,and I want IDEA/3des/twofish/etc also*all* *at* *the* *same* *time*.Such a stupidily obvious improvement - especially given that an advance infactoring will break both RSA and DSS at the same time, no matter how manybits I've got...I think it's an intel thing - chip level stuff - but I did forget to mentionone important point...if you've got a laptop and it does a suspend-to-disk!Here's an imaginary situation:1. open photoshop --> swapfile grows to 100megs2. open pgp 5.0 and decrypt something. --> swapfile grows another 20 megs3. close photoshop --> swapfile shrinks to 20 megs pgp disk wipe : The PGP passphrase is now sitting in plaintext on some free sectors, *as**well* *as* being in the swap file, because when the swapfile shrank, windowsdid not overwrite the sectors. [pgp 5.0 has the plaintext passphrasecacheing bug in it that I discovered]4. if you wipe the swapfile and free space, you'll hopefully kill it,however,3.5 if before doing the wipe, you create a new ms-word doc after closing PGPand save it do disk, scattered throughout the MS-Word file data structureswill be fragments of uninitialised memory and unwiped disk space. You cannever wipe this with anything, because no wiping tool knows the structure ofMS-Word files (and, XL, and every other file for that matter).If you have any reason why you think you should use a disk wiper, you shouldbe using PGP disk instead in the first place. pgp disk wipe : DISK WIPERS WILL NEVER GIVE YOU THE PROTECTION YOU THINK THEY WILL.Something nobody usually thinks to try: pretend you've got 10 minutesbefore the police smash down your door to confiscate your PC.That's not enough time to wipe everything, and if you're not 100% sureyou're in iminent danger (and when ever *would* you?), you probablywouldn't wipe it anyhow.Why not do a test to see how much sensitive stuff is lying around? Goget a sector editor and search every sector of your hard drive for stuffthat could get you in trouble. Takes a heluvalot longer than 10 mins too...1) For starters: ALL sensitive information should be on either a PGPdisk ora Scramdisk container. If you open a MS-word or Excel document that has sensitive information, keep it on the encrypted partition and open it there--the backup will be created on the encrypted partition too (youcan see the $document). At least mine are. pgp disk wipe : 2) Set the Swapfile to a fixed limit and wipe it using a DOSwiper upon shutdown after each time you access sensitiveinformation or type your passphrase. You can use Scorch and/or Scribble to do this.3) Also set your wiper(s) to wipe potentially sensitivetemporary and history files: C:\recycledC:\windows\recentC:\windows\c ookiesC:\windows\historyC:\windows\tempC :\windows\temporary Internet files\*.* You can do this by setting up a routine using your DOSwiper(s), or you can set up Eraser to do a lot of this in Windowsbefore shutdown, if the index.dat files aren't a problem. Eraser would be a plus because it will clear all the deleted file entries from the FAT when it wipes the disk space. If time isIf nothing touches the hard disk in unencrypted form, you're fairlysafe. Virtual memory a problem? Encrypt your swap files / partitions!
| ||
|
anon proxies, anonymizer email, anonymizer hotmail, anonymizer proxy, anonymizer safeweb, anonymizer software, anonymizer surf, anonymizer surfing, anonymous proxies list, bc wipe free, cookie eraser, different proxies ie5, drive zero wipe, eraser 5.2, eraser windows, evidence eraser codes, file wipe, free anonymizer, free anonymous proxies, free irc proxies, free proxies, free proxy, free public proxies, freeware file eraser, hard drive wipe, history eraser, irc proxies, irc proxy, mail anonymizer, mirc proxies, proxies free, proxy anonymizer, public http proxies, public proxies, samair proxies, secure proxies, uk proxies, updated proxies, web anonymizer, web based proxies, wipe disk, wipe internet files |