Thread: Privacy, Passwords, and Encryption
View Single Post
NIN101 is offline NIN101
2011-01-21 , 14:51
Posts: 115 | Thanked: 342 times | Joined on Dec 2010
#9
It can't. This is exactly because of the wear-leveling mechanism: the controller tries to balance all writes so that all physical blocks have around the same amount of writes happened to them and this is done by mapping a physical block to a virtual one. When the OS tries to write block #15, it might actually be writing to physical block #3.
Thx, I didn't knew that. Very interesting.


It would be possible, but would require some tinkering around in Maemo OS
And then you say this:

Full-disk encryption is infeasible. It would require heavy modifications to the whole boot-up process and kernel.
And i agree.

My understanding of FDE is, that you encrypt everything (expect of the /boot/ partition), not just a partition or even with loop back interfaces. And this would be very tricky as you have said.

Furthermore, there is something with loop back interfaces on the N900. A simple one, mounted with -o loop is kinda slow. My device even rebooted always when I tried to set up a chroot with this simple loop. To have a more performant, one should use dmlosetup, with the dm-mod and dm-loop kernel modules like Easy Debian does.
Of course it should be the problem of the crypto program you use.


Sure, its only 5 digits, but it'd take quite a while.
33 seconds on mine. Not longer than 2 minutes on everyones I would say. But of course it depends on the hardware they have. And we can say without any doubt, that they have access to good hardware lol.

1. Make the /home/ partition incompatible with the normal OS - Either an excrypted FS, or just something other than EXT2/3.
This isn't a protection my friend.
Last edited by NIN101; 2011-01-21 at 15:27.