On Thu, 2006-03-30 at 09:30 -0800, Mark Hedges wrote: > > > Stefan Schönleitner wrote: > > > > Hi, > > > > > > > > is it possible to add a self-destruct passphrase to the encrypted > > > > filesystem ? > > > > Are there any intentions to implement a self-destruct solution ? > > > Maybe a different password should trigger an arbitrary action in > a script, for instance, write to a device file that triggers the > explosive or EMP charges you placed in the computer, which were > set to go off anyway if someone opened the case. :-) > > Mark As Stefan Schönleitner pointed out, the only way a self-destruct can work is if the attacker uses your software. If dm-crypt/LUKS were to implement a self-destruct, attackers would just patch the source removing the destructive capabilities before attempting decryption. Wiring a machine for physical destruction becomes a physics/safe cracking exercise which can always be defeated given enough time and resources. Brandon -- Brandon Enright Network Security Analyst UCSD ACS/Network Operations bmenrigh@xxxxxxxx --------------------------------------------------------------------- - http://www.saout.de/misc/dm-crypt/ To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx For additional commands, e-mail: dm-crypt-help@xxxxxxxx
