http://philosecurity.org Tue, 08 Nov 2011 22:48:18 +0000 hourly 1 http://wordpress.org/?v=3.3.1 http://philosecurity.org/research/cleartext-passwords-linux/comment-page-1#comment-75 Is your RAM chained to your servers? « South African Networker Fri, 01 Aug 2008 16:05:01 +0000 http://memsniff.org/?page_id=34#comment-75 [...] To read Sherri’s post please visit http://philosecurity.org/research/cleartext-passwords-linux [...] [...] To read Sherri’s post please visit http://philosecurity.org/research/cleartext-passwords-linux [...]

]]> http://philosecurity.org/research/cleartext-passwords-linux/comment-page-1#comment-73 sherri Thu, 31 Jul 2008 21:35:48 +0000 http://memsniff.org/?page_id=34#comment-73 AW: Very interesting! I've just downloaded it and I'm looking forward to reading it. Thanks! AW: Very interesting! I’ve just downloaded it and I’m looking forward to reading it. Thanks!

]]> http://philosecurity.org/research/cleartext-passwords-linux/comment-page-1#comment-72 AW Thu, 31 Jul 2008 21:18:45 +0000 http://memsniff.org/?page_id=34#comment-72 If you are interested in finding TrueCrypt keys in memory, you may want to check out the whitepaper from our BlackHat presentation: http://www.blackhat.com/presentations/bh-dc-07/Walters/Paper/bh-dc-07-Walters-WP.pdf If you are interested in finding TrueCrypt keys in memory, you may want to check out the whitepaper from our BlackHat presentation:
http://www.blackhat.com/presentations/bh-dc-07/Walters/Paper/bh-dc-07-Walters-WP.pdf

]]> http://philosecurity.org/research/cleartext-passwords-linux/comment-page-1#comment-46 sherri Sat, 26 Jul 2008 21:29:04 +0000 http://memsniff.org/?page_id=34#comment-46 I haven't specifically examined encryption keys in memory, because the Princeton/EFF/Wind River team has already been studying that in-depth (specifically including Truecrypt). It's a fascinating topic, and I'm looking forward to hearing more of their research. I believe they'll be presenting at USENIX next week. I haven’t specifically examined encryption keys in memory, because the Princeton/EFF/Wind River team has already been studying that in-depth (specifically including Truecrypt). It’s a fascinating topic, and I’m looking forward to hearing more of their research. I believe they’ll be presenting at USENIX next week.

]]> http://philosecurity.org/research/cleartext-passwords-linux/comment-page-1#comment-44 Matt Ball Fri, 25 Jul 2008 19:40:54 +0000 http://memsniff.org/?page_id=34#comment-44 Have you done any similar research to find the encryption keys in memory (in particular for TrueCrypt)? With the LRW encryption mode (a deprecated mode that TrueCrypt still supports for existing encrypted partitions), if you encrypt the tweak key with itself, it's possible to leak the key. I'd be curious about cases where the TrueCrypt memory is swapped out to an encrypted swap file. Have you done any similar research to find the encryption keys in memory (in particular for TrueCrypt)? With the LRW encryption mode (a deprecated mode that TrueCrypt still supports for existing encrypted partitions), if you encrypt the tweak key with itself, it’s possible to leak the key. I’d be curious about cases where the TrueCrypt memory is swapped out to an encrypted swap file.

]]>