Active Topics
-
Camera phone competition March 2023 "Endless" (35)
to General by Maemish - 8 hrs, 53 mins ago -
TLS 1.2 for N9 is ready (28)
to MeeGo / Harmattan by smartblu9 - 10 hrs, 7 mins ago -
Maemo repository (3)
to Community by torsen - 1 day, 1 hr ago -
Error after installing Leste on sdcard (11)
to Maemo 7 / Leste by Maemish - 1 day, 23 hrs ago -
Introducing ubiboot N9 (multiboot OS loader) (1,393)
to Alternatives by smatkovi - 3 days, 5 hrs ago - more...
| The Following User Says Thank You to hhbbap For This Useful Post: | ||
|
2016-02-10
, 05:54
|
|
Posts: 201 |
Thanked: 410 times |
Joined on Dec 2013
|
#202
|
Originally Posted by juiceme
If it is not encrypted at all you just plug it via USB. Maybe you have to reboot (battery in/out). But that's it. It is unsafe as hell.
Just out from interest, if you have device locked how is someone going to access your data?
The most effective way that I know is to open the device and directly access the memory chip. Mind you, it might well be popchip when you canot even get at the die witout etching open the package...
What else, maybe interface to internal serial IO or JTAG? or maybe FBUS? Do you know how to do that?
 |
|
2016-02-10
, 12:06
|
|
Moderator |
Posts: 3,718 |
Thanked: 7,420 times |
Joined on Dec 2009
@ Bize Her Yer Trabzon
|
#203
|
Originally Posted by gaelic
There is no Data transfer available using a cable on the Turing Phone......
If it is not encrypted at all you just plug it via USB. Maybe you have to reboot (battery in/out). But that's it. It is unsafe as hell.
So you can strike out that option
|
|
2016-02-10
, 12:39
|
|
Community Council |
Posts: 4,920 |
Thanked: 12,867 times |
Joined on May 2012
@ Southerrn Finland
|
#204
|
Originally Posted by gaelic
You must have been eating some really bad mushrooms...
Originally Posted by juicemeIf it is not encrypted at all you just plug it via USB. Maybe you have to reboot (battery in/out). But that's it. It is unsafe as hell.Just out from interest, if you have device locked how is someone going to access your data?
The most effective way that I know is to open the device and directly access the memory chip. Mind you, it might well be popchip when you canot even get at the die witout etching open the package...
What else, maybe interface to internal serial IO or JTAG? or maybe FBUS? Do you know how to do that?
What the hell you are talking about???
1.) If you mean the current Jolla device running SFOS:
There sure is NOTHING you can get out thu the USB port that way.
If the device is locked, you cannot access the device via USB.
If you boot/power-cycle it, it will ask for lock code and not let you thru.
2.) If you are talking about the (hypotethical) Turing device:
It does not even HAVE any USB port...
| The Following User Says Thank You to juiceme For This Useful Post: | ||
 |
|
2016-02-10
, 13:42
|
|
Posts: 2,355 |
Thanked: 5,249 times |
Joined on Jan 2009
@ Barcelona
|
#205
|
I hate it when someone assumes "full device encryption" = "security".
How many "mortal person" security issues are exactly prevented with full device encryption? Virtually the only ones I can think of are the of the "government employee with nation-wide secrets" variety, where the attackers care enough to actually desolder eMMC chips. But for those you have to take into consideration how probable it is for a government-level agency to be able to break any crypto you throw at them...
This is the reason most known "privacy-unfriendly" (*cough*) are quite happy to offer full device encryption. It thwarts almost no one.
Signed: javispedro, the "anti-security" guy.
How many "mortal person" security issues are exactly prevented with full device encryption? Virtually the only ones I can think of are the of the "government employee with nation-wide secrets" variety, where the attackers care enough to actually desolder eMMC chips. But for those you have to take into consideration how probable it is for a government-level agency to be able to break any crypto you throw at them...
This is the reason most known "privacy-unfriendly" (*cough*) are quite happy to offer full device encryption. It thwarts almost no one.
Signed: javispedro, the "anti-security" guy.
| The Following 5 Users Say Thank You to javispedro For This Useful Post: | ||
|
|
2016-02-10
, 13:51
|
|
Posts: 201 |
Thanked: 410 times |
Joined on Dec 2013
|
#206
|
Originally Posted by javispedro
no encryption is not as safe as encryption. Simple as that.
I hate it when someone assumes "full device encryption" = "security".
How many "mortal person" security issues are exactly prevented with full device encryption? Virtually the only ones I can think of are the of the "government employee with nation-wide secrets" variety, where the attackers care enough to actually desolder eMMC chips. But for those you have to take into consideration how probable it is for a government-level agency to be able to break any crypto you throw at them...
This is the reason most known "privacy-unfriendly" (*cough*) are quite happy to offer full device encryption. It thwarts almost no one.
Signed: javispedro, the "anti-security" guy.
|
|
2016-02-10
, 13:54
|
|
Posts: 201 |
Thanked: 410 times |
Joined on Dec 2013
|
#207
|
Originally Posted by juiceme
1) You can leave your insults to yourself
You must have been eating some really bad mushrooms...
What the hell you are talking about???
1.) If you mean the current Jolla device running SFOS:
There sure is NOTHING you can get out thu the USB port that way.
If the device is locked, you cannot access the device via USB.
If you boot/power-cycle it, it will ask for lock code and not let you thru.
2.) If you are talking about the (hypotethical) Turing device:
It does not even HAVE any USB port...
2) While booting there is the possibility to access the device. (recovery mode). No hardware manipilation whatever needed.
3) They have a USB Port (essentially) , as do iPhones. Just the connector is shaped differently. Security by obscurity.
| The Following 3 Users Say Thank You to gaelic For This Useful Post: | ||
|
|
2016-02-10
, 14:59
|
|
Posts: 2,355 |
Thanked: 5,249 times |
Joined on Jan 2009
@ Barcelona
|
#208
|
Originally Posted by gaelic
Too tired to discuss the "benefits" of fake-security, again on this forum, for the nth time.
no encryption is not as safe as encryption. Simple as that.
Originally Posted by gaelic
Not really (and I consider this an annoyance).
2) While booting there is the possibility to access the device. (recovery mode).
I'm so tired of the useless and annoying locking down of devices caused by "security" non-sense that I'm going to don a superhero costume with "the Antisecurity guy" written on it.
"Privacy" is a much better keyword (and arguably Sailfish does not excel at it either, but it can be fixable).
| The Following 4 Users Say Thank You to javispedro For This Useful Post: | ||
|
|
2016-02-10
, 15:13
|
|
Posts: 201 |
Thanked: 410 times |
Joined on Dec 2013
|
#209
|
Originally Posted by javispedro
Why should it be fake security. The screenlock as it is is fake security.
Too tired to discuss the "benefits" of fake-security, again on this forum, for the nth time.
Not really (and I consider this an annoyance).
I'm so tired of the useless and annoying locking down of devices caused by "security" non-sense that I'm going to don a superhero costume with "the Antisecurity guy" written on it.
"Privacy" is a much better keyword (and arguably Sailfish does not excel at it either, but it can be fixable).
So its just excuses from your side: too tired, etc. That's lame.
| The Following User Says Thank You to gaelic For This Useful Post: | ||
|
|
2016-02-10
, 15:24
|
|
Posts: 951 |
Thanked: 2,344 times |
Joined on Jan 2012
@ UK
|
#210
|
| The Following 6 Users Say Thank You to mariusmssj For This Useful Post: | ||
 |
| Tags |
| dave999scam, sailfish, scamfish, turing, turingphone |
«
Previous Thread
|
Next Thread
»
|
All times are GMT. The time now is 19:21.
I do not want an Android tablet.
Regards, Frode