[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "here strings" and tmpfiles

From: Andreas Kusalananda Kähäri
Subject: Re: "here strings" and tmpfiles
Date: Thu, 11 Apr 2019 16:42:19 +0200
User-agent: Mutt/1.11.4 (2019-03-13)

On Thu, Apr 11, 2019 at 09:01:50PM +0800, konsolebox wrote:
> On Thu, Apr 11, 2019, 4:04 PM Andreas Schwab <address@hidden> wrote:
> > On Apr 10 2019, Daniel Kahn Gillmor <address@hidden> wrote:
> >
> > > data written to the local filesystem can be discovered by someone
> > > analyzing the disk controller data path, or by someone with access to
> > > the underlying storage medium.
> >
> > Do you have swap enabled?
> >
> It's 2019.
> --
> konsolebox

The point of Andreas' comment is, I presume, that if you have swap
enabled, sensitive data may be written to that swap, either in low
memory situations or when hibernating your laptop.  Discussion about
whether temporary files are used or not for certain operations becomes
less interesting if the data anyway runs the risk of being written to an
unencypted swap.

It implicitly also gives the hint that using an encrypted temporary
storage area may be considered by those with such needs (because they
would hopefully already have thought about enabling some form of
encryption of their swap partition or swap files).

I'm sorry for adding to this overly long thread.


Andreas Kusalananda Kähäri,
National Bioinformatics Infrastructure Sweden (NBIS),
Uppsala University, Sweden.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]