Re: [tlug] search for encrypted information exchange

[Bruno Raoult <braoult@example.com>]

Ohh...

On Thu, Aug 27, 2009 at 19:14, Curt Sampson <cjs@example.com> wrote:

> To resume: I can loose my laptop with no fear. I cannot do the same with
> my wallet.

So you never leave your laptop in suspend or hibernate mode when you're
not present?

That is particularly dangerous; all you need to do is wake up the
laptop, insert a USB key that boots your memory-grabber, and power-cycle
the machine. The attacker at that point has all keys that were in
memory, including those for any encrypted filesystems that were mounted
and SSH and PGP keys present in agents.

I just repeat: I can loose my laptop with no fear. I cannot do the same with my wallet,
with a few credit cards inside...

The attacker can get my (encrypted) laptop, right.

I don't care. He will spend time, but get no information from me, or from my company.
Just an OS, and some VPN software.

Geeks are focusing on laptops/encryption/etc..., while most people data is in wallets,

phones, am I wrong? This is my case.

So  SSH/PGP/geek stuff is very far 1) from people who care - like me - and 2)
from people who do not (they will have no encryption, anyway).

I just wonder who are the target readers of your post:  "dummy geeks"?

br.


-- 
2 + 2 = 5, for very large values of 2.