 |
|
|
|
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Tor Olav Kristensen wrote:
> Invisible wrote:
> ...
>> Now all the sysadmin needs to do is install a keylogger... oh, wait...
>> ;-)
>>
>> Anything you can do, the sysadmin can undo. He controls the machine
>> you're using. You can't win.
> ...
>
> I think you can.
>
> Just boot an OS from a media that he does not control.
> E.g. Knoppix from a CD or a memory stick.
Not good enough anymore. Flash the machines' BIOS with custom code
that'll load a hypervisor before loading any OS.
Granted, if your OS is sufficiently advanced, it'll notify you of the
HV, but it won't be able to stop it.
...Chambers
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Chambers wrote:
> Tor Olav Kristensen wrote:
>> Invisible wrote:
>> ...
>>> Now all the sysadmin needs to do is install a keylogger... oh,
>>> wait... ;-)
>>>
>>> Anything you can do, the sysadmin can undo. He controls the machine
>>> you're using. You can't win.
>> ...
>>
>> I think you can.
>>
>> Just boot an OS from a media that he does not control.
>> E.g. Knoppix from a CD or a memory stick.
>
> Not good enough anymore. Flash the machines' BIOS with custom code
> that'll load a hypervisor before loading any OS.
>
> Granted, if your OS is sufficiently advanced, it'll notify you of the
> HV, but it won't be able to stop it.
Ok. Then just use a computer that you know has not been flashed.
(MAC addresses can be faked - AFAIK)
--
Tor Olav
http://subcube.com
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Jim Henderson wrote:
> I was hoping Andy would answer the question, because I was attempting to
> make a point about kernel debugging. :-(
Sorry. I'm a nerd too. I'm not always thinking about why someone would
ask a question. :-)
--
Darren New / San Diego, CA, USA (PST)
Helpful housekeeping hints:
Check your feather pillows for holes
before putting them in the washing machine.
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
On Sat, 05 Jul 2008 19:33:05 -0700, Darren New wrote:
> Jim Henderson wrote:
>> I was hoping Andy would answer the question, because I was attempting
>> to make a point about kernel debugging. :-(
>
> Sorry. I'm a nerd too. I'm not always thinking about why someone would
> ask a question. :-)
LOL, I do that as well. :-)
Jim
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
>>>> Anything you can do, the sysadmin can undo. He controls the machine
>>>> you're using. You can't win.
>>>
>>> I think you can.
>>>
>>> Just boot an OS from a media that he does not control.
>>> E.g. Knoppix from a CD or a memory stick.
>>
>> Not good enough anymore. Flash the machines' BIOS with custom code
>> that'll load a hypervisor before loading any OS.
>>
>> Granted, if your OS is sufficiently advanced, it'll notify you of the
>> HV, but it won't be able to stop it.
>
> Ok. Then just use a computer that you know has not been flashed.
> (MAC addresses can be faked - AFAIK)
This is rapidly straying outside the relms of what normal clueless users
are able to comprehend.
I was say this with complete authority: If you are not a computer
expert, there is nothing you can do to stop your sysadmin reading
through your stuff if he wants.
--
http://blog.orphi.me.uk/
http://www.zazzle.com/MathematicalOrchid*
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Tor Olav Kristensen wrote:
>
> Just boot an OS from a media that he does not control.
> E.g. Knoppix from a CD or a memory stick.
>
You do realize that if it's a company machine, he controls the boot order.
--
Eero "Aero" Ahonen
http://www.zbxt.net
aer### [at] removethis zbxtnetinvalid
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Orchid XP v8 wrote:
> I was say this with complete authority: If you are not a computer
> expert, there is nothing you can do to stop your sysadmin reading
> through your stuff if he wants.
Remember that not all sysadmins are as clued also. Would *you* know how
to flash a BIOS so it looks like it's booting your operating system but
is really booting a different one? I sure wouldn't.
--
Darren New / San Diego, CA, USA (PST)
Helpful housekeeping hints:
Check your feather pillows for holes
before putting them in the washing machine.
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
>> I was say this with complete authority: If you are not a computer
>> expert, there is nothing you can do to stop your sysadmin reading
>> through your stuff if he wants.
>
> Remember that not all sysadmins are as clued also. Would *you* know how
> to flash a BIOS so it looks like it's booting your operating system but
> is really booting a different one? I sure wouldn't.
Would a typical non-expert computer user know how to do something that
actually requires this? No. ;-)
If we assume that the sysadmin is sufficiently more knowledgable than
you that you're asking somebody else who to keep them out, you're more
or less doomed to failure. (Unless the person you ask knows your system
well and comes up with some damned good advice!)
--
http://blog.orphi.me.uk/
http://www.zazzle.com/MathematicalOrchid*
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Eero Ahonen wrote:
> Tor Olav Kristensen wrote:
>>
>> Just boot an OS from a media that he does not control.
>> E.g. Knoppix from a CD or a memory stick.
>>
>
> You do realize that if it's a company machine, he controls the boot order.
Yes, but (IIRC) in this part of the discussion it was said that it
would be difficult for the manager of a company to prevent system
administrators to read confidential information.
If you are the manager, you can instruct system administrators to
set the desired boot order on your PC.
--
Tor Olav
http://subcube.com
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
>> You do realize that if it's a company machine, he controls the boot
>> order.
>
> Yes, but (IIRC) in this part of the discussion it was said that it
> would be difficult for the manager of a company to prevent system
> administrators to read confidential information.
>
> If you are the manager, you can instruct system administrators to
> set the desired boot order on your PC.
If you are the manager, you can instruct the system administrators to
keep out of your files. Why are we having this discussion again? ;-)
--
http://blog.orphi.me.uk/
http://www.zazzle.com/MathematicalOrchid*
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
