-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 09/10/2012 03:37 PM, MFPA wrote: > Hi > > > On Monday 10 September 2012 at 6:45:29 PM, in > <mid:20120910174530.3096ce6...@smtp.hushmail.com>, ved...@nym.hush.com > wrote: > > >> In any event, it is simply possible to avoid the entire >> issue, by booting from static media (i.e. ubuntu) >> writing to usb only, using any ubuntu editor, and then >> rebooting when done. > > What about TEMPEST as a potential eavesdropping vector?
> If van eck phreaking is a potential surveillance vector, I think that we could categorically conclude that the person is screwed. This is assuming that the person only has access to use the computer. If it's his own computer the first thing I would recommend would be full disk encryption, which should significantly mitigate the need for an additional secure text editor, potentially combined with Tresor. Then, in theory one could use low pass filtering fonts for text data, and as our good friend wikipedia surmises, "randomising the least significant bit of the video data information". However, while it's been a while since I've been playing around with this, I don't recall software security measures ever doing a whole hell of a lot. Hardware solutions tended to be the only real mitigation, and I would strongly recommend a Faraday cage. Maybe some sort of hood made out of wire mesh to stop radiation leakage. Either way, it is both conspicuous, and without controlling the computer, very difficult. ...Or was this just an example of an argumentum ad ridiculum? //landon - -- Violence is the last refuge of the incompetent. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iQIcBAEBCgAGBQJQTlF4AAoJEDeph/0fVJWsMKsP/RfzxGnOSXB4m9ZyP0bYxPY7 D0MnDiLNUUxHD5iemffnp3ynNWYfA0mCwzOiD6N9FOhFzeItq4R7aQDbylF6qLYD dkemepMylrSvH5/p3BA4263ayiCyM/LmtLZs7QZ+GGZ6XDB6dkAx/r8DgLZETgN6 6nwGd9lJ2qft49loKo5KF2oCZOLaOCt43O8xdBmJt1YyloA8JMoH8o/rAoOpVyVa sBfBAKuqX/xRLsfoGb6+MwQA4Ugnxnzv4Rl5bqTqE+Y6k3LJ/GEGRC+Wo/a1ADon ePGivvhfc0G+E2g6OBmZS8wJ1FJKn9IvMIDfS5v+LUh7cg0sjc/aifD5KkUOZwRB zLZ0A7uBOQV8akcdxZrYfJLkaw2FX6XDd8eIyEp/mq3uXBx1jQXVGldepnx2pVuf IZ1AQZSHICP040bWP/4vG6F/gFJcgvpqCfieMCDC/4W2KFsxm5dRSdwHj69R3yIS o5vK+qJGxkspm+8wF4xR1mA9CxEQP2pGuiBZNFammluLPEbMKov4S9UQMGH+TxDn 6yK3sQlolMPKSUrNKxyHsbCy+BRzQazFAe/txB6+lhwKi3nxzbdWHBQFoe7NmZh3 8GwuB0ri4azutCSvwUt8WYBvimkmk7I7cKiw5qaCGASiLF2DRXUraC0E7u8VoHnU B/bwavwMWi0d8imMzFt2 =OH7s -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
