Security Basics mailing list archives

Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops?

From: Dave Patterson <sdpatt2 () gmail com>
Date: Tue, 20 Jun 2006 10:56:03 +0700

Sorry, guys, for not responding sooner - several people have written
requesting technique for the Debian encrypted disk.  More detailed
information can be found here:

http://www.saout.de/tikiwiki/tiki-index.php

In a nutshell, a stock Debian kernel and stock package YAIRD (Yet Another
Mkinitrd) along with the package cryptsetup are all that's needed.

A boot option does not need to be passed at boot time.  The passphrase is
passed to the initrd, which then will boot the encrypted kernel.

Another way to do this is to have Windows on a primary partition at the
beginning of the disk, completely encrypted Linux partitions on the rest.

GRUB and the requisite initrd is on a usbkey.  BIOS (password protected) is
set to boot from USB first, hardrive second, floppy or cdrom last.

The thug with a gun at the airport demands you boot your computer, windows
comes up, he says 'you can go' - not 'WHAT'S THAT????'
-- 
Cheers,

  Dave

Current thread:

Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops?, (continued)
- - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? cc (Jun 23)
- Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Harrison Holland (Jun 13)
  - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Gethin Jones (Jun 14)
    - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Greg Merideth (Jun 15)
    - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? zipk0der (Jun 16)
- RE: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Sadler, Connie (Jun 13)
- Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Bryan S. Sampsel (Jun 13)
  - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Noaman Khan (Jun 14)
    - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Saqib Ali (Jun 15)
- Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Dave Patterson (Jun 13)
  - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Dave Patterson (Jun 20)
- Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Brian Daniel Beck (Jun 13)
  - Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Ken S (Jun 14)
- RE: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Robertson, Seth (JSC-IM) (Jun 14)
  - RE: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? Bryan S. Sampsel (Jun 15)
- Re: Re: In light of what has happened with the theft of the VA laptop, what are the "best practices" for securing laptops? michal (Jun 26)