A safe text editor // why??
Landon Hurley
ljrhurley at gmail.com
Mon Sep 10 22:46:13 CEST 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 09/10/2012 03:37 PM, MFPA wrote:
> Hi
>
>
> On Monday 10 September 2012 at 6:45:29 PM, in
> <mid:20120910174530.3096CE6739 at smtp.hushmail.com>, vedaal at nym.hush.com
> wrote:
>
>
>> In any event, it is simply possible to avoid the entire
>> issue, by booting from static media (i.e. ubuntu)
>> writing to usb only, using any ubuntu editor, and then
>> rebooting when done.
>
> What about TEMPEST as a potential eavesdropping vector?
>
If van eck phreaking is a potential surveillance vector, I think that we
could categorically conclude that the person is screwed. This is
assuming that the person only has access to use the computer. If it's
his own computer the first thing I would recommend would be full disk
encryption, which should significantly mitigate the need for an
additional secure text editor, potentially combined with Tresor. Then,
in theory one could use low pass filtering fonts for text data, and as
our good friend wikipedia surmises, "randomising the least significant
bit of the video data information".
However, while it's been a while since I've been playing around with
this, I don't recall software security measures ever doing a whole hell
of a lot. Hardware solutions tended to be the only real mitigation, and
I would strongly recommend a Faraday cage. Maybe some sort of hood made
out of wire mesh to stop radiation leakage. Either way, it is both
conspicuous, and without controlling the computer, very difficult.
...Or was this just an example of an argumentum ad ridiculum?
//landon
- --
Violence is the last refuge of the incompetent.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/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=OH7s
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list