Results 1 to 6 of 6

Thread: LUKS security concern

  1. #1
    Join Date
    Nov 2010
    Beans
    162

    LUKS security concern

    We've been talking about the security issues with full-disk encryption, e.g. LUKS. Most of those concerns seem to center around someone who has physical access to your computer, like evil maid attack, cold boot attack, etc. However, isn't the most dangerous and insidious enemy is from online, like rootkit, Trojan, spyware, keylogger, etc.

    So, my question is, to what degree having your system partition encrypted with LUKS helps guard against those invisible enemies from online (or, you can call them hackers)? You know, the running time is the most vulnerable time for a LUKS encrypted computer.

  2. #2
    Join Date
    Nov 2009
    Beans
    919
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: LUKS security concern

    To the first part of you question the answer is no, web-based threats are not as pressing or dangerous as physically present attackers.

    As for the second question, encryption of the disk really won't help against web-based threats because while the system is actively in use it's not encrypted. The encryption protects the data when the device is powered off.

  3. #3
    Join Date
    Nov 2010
    Beans
    162

    Re: LUKS security concern

    Quote Originally Posted by OpSecShellshock View Post
    To the first part of you question the answer is no, web-based threats are not as pressing or dangerous as physically present attackers.

    As for the second question, encryption of the disk really won't help against web-based threats because while the system is actively in use it's not encrypted. The encryption protects the data when the device is powered off.
    So what is the most effective means to protect against web-based threats in Ubuntu? Can you hint some starting point that I can do some readings? Many thanks.

  4. #4
    Join Date
    Mar 2006
    Location
    Williams Lake
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: LUKS security concern

    In a default installation there are no ports listening, so you don't have to worry about anyone accessing your system from the internet. The only thing you really have to worry about is browser hijacking. and the only way to prevent that is to be aware of where you are going on the internet.

  5. #5
    Join Date
    Nov 2010
    Beans
    162

    Re: LUKS security concern

    Quote Originally Posted by cariboo907 View Post
    In a default installation there are no ports listening, so you don't have to worry about anyone accessing your system from the internet. The only thing you really have to worry about is browser hijacking. and the only way to prevent that is to be aware of where you are going on the internet.

    Can you explain a bit more about "no ports listening"? Is it the case even if I am using root instead of /username? Can you provide a guide or link for beginner's security guide under Ubuntu 10.10? Thanks.

  6. #6
    Join Date
    Dec 2005
    Beans
    15
    Distro
    Kubuntu 10.04 Lucid Lynx

    Re: LUKS security concern

    This guide tends to spell out security in a comlete way. They have many easy to read guides about security.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •