Page 1 of 1

Computer Security

Posted: 10 Jul 2015 04:11
by troypulk
Is there anything I can do to prevent a person from getting in to my solydX system if it gets stolen?

Can they get past my password?

Thanks

Re: Computer Security

Posted: 10 Jul 2015 06:55
by dyfi
Password can be changed by someone competent with Linux.

Personally I would encrypt any sensitive files within your
Document folder.

Re: Computer Security

Posted: 10 Jul 2015 08:26
by kurotsugi
if the goal is to acces the files then a password isn't required. simply plug the HDD as external drive and mount it. done.

you'll need a strong encryption to protect your files.

Re: Computer Security

Posted: 10 Jul 2015 08:59
by Arjen Balfoort
Indeed, it's fairly easy to get to someones data (a live ISO and knowledge of chroot is enough) and encrypting your valuable data is the best way to go. I remember a tutorial on that subject: http://forums.solydxk.nl/viewtopic.php?f=9&t=1304

Re: Computer Security

Posted: 10 Jul 2015 13:37
by troypulk
kurotsugi wrote:if the goal is to acces the files then a password isn't required. simply plug the HDD as external drive and mount it. done.

you'll need a strong encryption to protect your files.
Thanks,

Would this work for the root password as well not just the user?

Re: Computer Security

Posted: 10 Jul 2015 16:42
by Zill
troypulk: "root" is, effectively, just another user and so to obtain access to a root account a hacker already knows the username (root) and so only has to guess the password.

With a user account a hacker has to guess both the username and the password, making this harder to crack.

This is why the sudo model is far more secure than the old idea of logging in to a root account directly.

Having said that, if someone else has physical control of your machine (or its HDD), then they have total access to your data.

As has already been advised, the best defence against this is to use strong encryption, either at file level and/or at disk level.

Of course, a strong cable to secure your machine to a solid fixture is also a good idea... ;-)

See "Kensington lock"

Re: Computer Security

Posted: 10 Jul 2015 17:56
by kurotsugi
if you encrypt your system at least at partition level then all user is secured.

Re: Computer Security

Posted: 10 Jul 2015 19:21
by just
Zill wrote:..."root" is, effectively, just another user and so to obtain access to a root account a hacker already knows the username (root) and so only has to guess the password...
There's no need for a hacker to guess the root's password. It may be changed/set to everything he wants, without even knowing the current one.

On Debian it is done in eight simple steps.

Re: Computer Security

Posted: 10 Jul 2015 19:28
by Zill
just wrote:... There's no need for a hacker to guess the root's password. It may be changed/set to everything he wants, without even knowing the current one.

On Debian it is done in eight simple steps.
With physical access to the machine, yes. But more difficult remotely though. ;-)

Re: Computer Security

Posted: 10 Jul 2015 19:46
by just
Zill wrote:
just wrote:... There's no need for a hacker to guess the root's password. It may be changed/set to everything he wants, without even knowing the current one.

On Debian it is done in eight simple steps.
With physical access to the machine, yes. But more difficult remotely though. ;-)
Most probably you're right. I've never reset root's password remotely. Though the method I follow requires only the access to kernel's boot line on boot. Nothing more.