Full Disclosure mailing list archives
Re: Disk wiping -- An alternate approach?
From: "Thor (Hammer of God)" <Thor () hammerofgod com>
Date: Tue, 26 Jan 2010 04:27:00 +0000
It depends on what you define "plausible deniability" as. Sometimes it just doesn't matter. At an industry event here in Seattle, a guy working for the state prosecutors office was speaking on this very subject - that of forensic collection of data on a system and the "presumption" of guilt. I posed the question of "how do you know that the data actually originated from actions of the user as opposed to someone who could have been using the system for their own means, or someone trying to plant false data? How do you prevent one from impugning your findings?" He said, "Well, we're not stupid." I'm serious. I was extremely disappointed in that answer, and it basically said, "it doesn't really matter what we find on the system- we're not stupid, and if the data is there, it means you did it." I was appalled. All you have is "deniability." This method doesn't make it "plausible" to anyone but you, which doesn't matter. If you want any level of meaningful "plausible deniability" then leave your wireless open and have your system riddled with bots. t
-----Original Message----- From: full-disclosure-bounces () lists grok org uk [mailto:full- disclosure-bounces () lists grok org uk] On Behalf Of Bipin Gautam Sent: Monday, January 25, 2010 7:42 PM To: E. Prom Cc: full-disclosure Subject: Re: [Full-disclosure] Disk wiping -- An alternate approach? ok, this all adds nothing but another layer of plausible deniability to ANY data found in your computer.... _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Disk wiping -- An alternate approach?, (continued)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 27)
- Re: Disk wiping -- An alternate approach? Christian Sciberras (Jan 27)
- Re: Disk wiping -- An alternate approach? T Biehn (Jan 27)
- Re: Disk wiping -- An alternate approach? Michael Holstein (Jan 27)
- Re: Disk wiping -- An alternate approach? Thor (Hammer of God) (Jan 27)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 27)
- Re: Disk wiping -- An alternate approach? Rohit Patnaik (Jan 27)
- Re: Disk wiping -- An alternate approach? T Biehn (Jan 26)
- Re: Disk wiping -- An alternate approach? E. Prom (Jan 25)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 25)
- Re: Disk wiping -- An alternate approach? Thor (Hammer of God) (Jan 25)
- Re: Disk wiping -- An alternate approach? Rohit Patnaik (Jan 25)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 25)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 25)
- Re: Disk wiping -- An alternate approach? Tracy Reed (Jan 25)
- Re: Disk wiping -- An alternate approach? E. Prom (Jan 25)
- Re: Disk wiping -- An alternate approach? Bipin Gautam (Jan 25)
- Re: Disk wiping -- An alternate approach? Michael Holstein (Jan 26)
- Re: Disk wiping -- An alternate approach? Christian Sciberras (Jan 26)
- Re: Disk wiping -- An alternate approach? T Biehn (Jan 26)
- Re: Disk wiping -- An alternate approach? T Biehn (Jan 26)