[–]▶ No.906392>>906394 >>906401 >>906587 >>906599 [Watch Thread][Show All Posts]
Do anyone use airgap here to protect their data?
I plan to buy a cheap thinkpad and remove anything that could connect it to the external world.
The best setup would be a full encrypted drive, with an usb key that would unencrypt before calling grub.
Airgap must be, from my point of view, the easiest way to protect your data.
Obviously, there is elaborate attack that can break airgap, but I don't think that they're a problem if you're just a "journalist" doing some sensible work without even publishing.
https://archive.fo/zYpNy
Here, the two major problems that can occur, is physical access (but that's for everything), and, well, the media you're gonna use to make exchange between your setup and your airgap.
What would be the best medium to move your data? USB key? CD? SD card in read only mode?
What do you think about airgap for protecting your data, like bank account information, documents, "journalist" research etc..?
Thanks.
▶ No.906394>>906466
>>906392 (OP)
Buy a desktop. Don't plug in to network.
▶ No.906395
How about remembering a passphrase and disabling USB entirely.
▶ No.906399>>906402
Make sure you don't use any usb-devices, prefer burnable dvd. Use properly made disc encryption with proper encryption key handling. No wifi adapters as there is no way to trust them any more. Stuff that leaves the PC should be encrypted with PGP.
▶ No.906401>>906404 >>906415 >>906705 >>906724
>>906392 (OP)
>I plan to buy a cheap thinkpad and remove anything that could connect it to the external world.
HAHA good fucking luck because the Intel CPU itself has a cellular chip that can communicate with the external world.
▶ No.906402
>>906399
I wouldn't have an optical drive on the machine either unless it's behind a locked panel.
▶ No.906404
>>906401
>he doesn't know about purism and tehnoetic
▶ No.906415>>906466 >>906474 >>907667
>>906401
I was saying as much as I can.
Like a t60 with libreboot, with wifi/blutooth etc.. components removed. Maybe blue every port what you'll never use.
Obviously, if you're targeted, there are other attack that can leak what you're doing on you laptop, or simply ask the police to search your house. In my country, I have to give out the encryption key anyway or I'll stay in prison until I do.
Is there a problem in using SD card? I could give up everything related to USB key if it's ok.
▶ No.906466>>906468 >>906477 >>906652 >>906701 >>910075 >>910231
>>906394
>Buy a desktop. Don't plug in to network.
>What are electricity Smart Meters?
>Which agencies helped 'develop' Smart Meters?
>Why is a Smart electricity Meter mandatory for your house?
Off grid power - Solar power + UPS is the way to go.
>>906415
> I have to give out the encryption key anyway or I'll stay in prison until I do.
Give them the one that unlocks your shameful folder of furries, they won't ask for more. Keep the other proper key elsewhere.
▶ No.906468
>>906466
>Off grid power - Solar power + UPS is the way to go.
Better put it underground in a metal lined bunker too, just to be absolutely sure there's no RF fuckery going on.
▶ No.906474>>906484
>>906415
>disk dd'd with random data
>they think it's encrypted
>but it's not, it's just random data and no key exists
>they demand a key anyway
>stay in prison a while... STAY FOREVER
>???
[spoiler]>no profit{/spoiler]
▶ No.906477>>906598 >>907667
>>906466
Where I live you aren't allowed to generate power for yourself on a regular basis (exception are emergencies where you would temporarily use a gasoline generator etc.). You must feed any power generated by (you) into the grid and then you get a discount for power which you basically have to buy back from the grid anyways.
▶ No.906484>>906486
>>906474
I wonder if you could get away with that?
>give us your encryption keys, nerd!
>it's not encrypted, it's just random bits, it's my hobby don't judge me!
▶ No.906486
>>906484
You couldn't. If you could, then anybody refusing to decrypt actually encrypted shit would have plausible deniability (assuming that any encryption worth its salt has output with a level of entropy pretty much indistinguishable from that of /dev/urandom output, which I guess can be safely assumed).
▶ No.906490>>906491
Does anything resembling encryption (or more generally information scrambling) exist in nature, or is the human species the only one doing this? Compression of sorts seems to exist (DNA being an example), but encryption?
▶ No.906491
>>906490
Compression exists because it's efficient, and evolution values efficiency. Most encryption is inefficient. It takes more energy and space to do the same thing that something unencrypted could do. Nature has passwords, keys that only fit certain locks, but I don't think it has encryption unless you get very liberal with the definition. Like, is camouflage a form of encryption?
▶ No.906521
Is SD card a good medium to exchange infos? What would be the best?
DVD seems costly and slow...
▶ No.906545
The best medium for transfer is sd card with an encrypted filesystem.
Using disc media is fine too, but you are limited by writes.
▶ No.906555>>906556
What's the point of having an air gap if you'll be constantly inserting removable media into it? You might as well connect it to a network at this point.
▶ No.906556>>906567 >>910307
>>906555
You certainly can't compare the two.
There is certainly problems with using sd cards. But I don't think that you have huge chance to get infected, by anything that could hurt your airgap, especially if you're using a read only sd card.
I mean, tell me if I'm wrong.
▶ No.906567>>906570
>>906556
How would it matter if the sd card was read only or read or write? Are you worried about your air gapped computer writing malware to the sd card and then infecting non air gapped computers? lol
▶ No.906570>>906574 >>906853
>>906567
Pretty much the opposite. That my network connected machine infect the sd card, that would then infect the airgap, scanning all of the files, then sending the info when I replug the sd card in my networked computer.
A lot of companies are using air gap, and that's costless, so I would not be suprised that malware would be coded just to infect medias, to discover air gap.
▶ No.906574>>906575
>>906570
How do you copy files onto it to backup then if it's read only?
▶ No.906575>>906576
>>906574
There is a physical switch on it. But well, I don't know how it really works at low level, so maybe it's useless.
▶ No.906576>>906582
>>906575
I don't think you would have anything noteworthy to look at if you can't even utilise a search engine to find out what an SD card switch does.
▶ No.906582
>>906576
I planned to search, don't worry.
▶ No.906587>>906837
>>906392 (OP)
How would bank account info on a computer that can't access the internet be useful? You couldn't use it for online banking, and if you aren't doing online banking, why even store that electronically?
I mean, sure, you could transfer it, but the moment it hits a networked computer you'd have to assume it gets stolen anyway, so what's the point?
▶ No.906598>>906600 >>906650 >>906717 >>906843
>>906477
Where the fuck is that how can it be illegal to make your own power?
▶ No.906599
>>906392 (OP)
>NSA lost their scripts and wants new ones
Nice try kid.
▶ No.906600>>906606
>>906598
America, europe, and preety much anywhere the (((fake jews))) own.
▶ No.906606>>906611 >>906713
>>906600
>America
Show a Federal law that forbades private energy development. You can't because it doesn't exist. Energy development is purview of the States, and even then, there is no law in any State that requires someone to have their property wired to the electrical grid.
▶ No.906611>>906616 >>906632
▶ No.906616>>906664
>>906611
Dude get fucked by my own words.
>Show a Federal law that forbades private energy development. You can't because it doesn't exist. Energy development is purview of the States
▶ No.906632
>>906611
He said federal you cuckmutt.
▶ No.906650
>>906598
>Where the fuck is that
No op but I believe it's France land of justice.
▶ No.906652>>906843 >>910231
>>906466
>Why is a Smart electricity Meter mandatory for your house?
hahaha I refused it and they couldn't do anything because it's more illegal to enter the house illegally than generating your own electricity.
▶ No.906664>>906715
▶ No.906693
Sometimes if I'm feeling spicy. I host an FTP server for my network though and so I leave myself connected to a physical ethernet cable a majority of the time.
▶ No.906701>>906713 >>910231
>>906466
How does a smart meter connect to an air-gapped desktop computer? What is the significance that people are capable of knowing your precise energy draw for the whole household?
▶ No.906705>>906713 >>907604
>>906401
>durrrrr hurrrrrr
Show us where the antenna for this chip is on the CPU die. Find an image of the CPU die (exposed) and point out where the cellular chip is.
protip: you can't
▶ No.906713>>906719
>>906705
>>906701
>>906606
>>906585
>trying this hard
Why does it matter what OP does with his data? Do you feel justified in pretending that you are better than OP by proclaiming the old "nothing to hide, nothing to fear" mantra?
▶ No.906715
>>906664
huh huh explain house boats which Florida is full of.
▶ No.906716>>906843 >>906854
Some metal plaster mesh that you ground should take care of any RF problems
▶ No.906717>>906847 >>907667
>>906598
Even worse, some places has outlawed private water, only the fluoride in the tap is allowed. Or growing vegetables in your own garden.
▶ No.906719
>>906713
>pointing out bullshit+lies == (((nothing to hide, nothing to fear)))
▶ No.906724>>906732
>>906401
That doesn't exist. There is no CPU in the world like that.
▶ No.906732>>906737
>>906724
it would be a easy thing thing to do, insert a wireless something into the dye.
But not really practical sitting under a meal heat sink in a grounded pc box.
▶ No.906737>>906759 >>906785
>>906732
It would also be an easy thing to detect. All you have to do is build a faraday cage and detect for cell phone signals inside the cage.
▶ No.906759>>906785
>>906737
who says it transmit anything until it get a wakeup signal ?
▶ No.906785
>>906759
>>906737
The PC itself is a faraday cage. The case is grounded and no signals will escape unless you build a ludicrously powerful transmitter which would be easier to detect.
▶ No.906837
>>906587
I was more talking about doing your accounting. You don't need internet connexion for that.
▶ No.906843>>906847 >>910231
>>906716
Very interesting. I'll think about it.
>>906598
Well, they are taxing for example any use of solar panel, to halt alternative use of electricity. Since electricity companies are most of the time national, they don't want you to use anything else.
>>906652
I heard that in france, they were forcing into people's home to install it. God, to get any privacy, you need more and more skills... I'm go buy an electrician book I think, need to know more about CPL filters and UPS.
▶ No.906847
>>906717
>>906843
They won't know about your water/electric setup unless you talk about it. So just keep your mouth shut.
▶ No.906853
>>906570
Weren't the Iranian systems that were infected by FLAME airgapped too?
▶ No.906854>>906858
>>906716
Would putting such mesh in apartment walls/ceiling/floor be effective at blocking neighbor wifi signal from entering the apartment (and blocking yours from leaving it)?
▶ No.906858>>906866
>>906854
Putting mesh would help. For an estimation regarding the type of mesh, use the same grade (hole size) of mesh as used in microwave ovens, since both operate at 2.4 GHz and microwave oven mesh would function to block wifi. Any conductive material would work for making the mesh (e.g. small size chicken wire).
▶ No.906866
>>906858
Don't forget to ground the mesh correctly.
▶ No.907604>>907937
>>906705
Antenna's on the motherboard, connected to the TX and ground pins of the radio inside the computer.
Prove me wrong, protip you can't.
▶ No.907667>>907907 >>909905
>The best setup would be a full encrypted drive, with an usb key that would unencrypt before calling grub.
THEY will just take your usb drive and decrypt your PC
you need a password, long password
>>906415
>In my country, I have to give out the encryption key anyway or I'll stay in prison until I do.
then "forget" the password. or kill them. or move to first world country
>>906477
>Where I live you aren't allowed to generate power for yourself on a regular basis (exception are emergencies where you would temporarily use a gasoline generator etc.). You must feed any power generated by (you) into the grid and then you get a discount for power which you basically have to buy back from the grid anyways.
why cucks living in your country allow that? your country need to be nuked or bombed
>>906717
>Even worse, some places has outlawed private water, only the fluoride in the tap is allowed. Or growing vegetables in your own garden.
do we need terrorism against the state? will this solve the problem?
▶ No.907907>>907927 >>907978
>>907667
>do we need terrorism against the state? will this solve the problem?
That would make it worse. They are begging for an excuse to crack down, and will jump at the opportunity. Why do you think they are letting in hordes of the people most well known for terrorism?
▶ No.907927>>909905
>>907907
So you're saying that they are cracking down on the citizens of the country but not the new migrant hoards who are literally terrorizing the country?
▶ No.907937>>909905
>>907604
Antenna's not on the motherboard, not connected to the TX and ground pins of the nothing inside the computer.
Prove me wrong, protip you can't.
▶ No.907978>>909905
>>907907
>That would make it worse. They are begging for an excuse to crack down, and will jump at the opportunity. Why do you think they are letting in hordes of the people most well known for terrorism?
but they already crack down on us, without excuses
if we make strong terro actions, they will submit
▶ No.909905
>>907978
>>907927
>>907667
Study the GLADIO operation, and what happened in Italia in the cold war. Maybe will you understand the true nature of "islamist" terrorism.
Remember that Baghdadi, before being the head of ISIS, was in Guantanamo. Remember that all of the head of ISIS are old head of Irakian military etc...
>>907667
>you need a password, long password
I'm sorry, I explained myself badly. I meant moving to an usb key the part you don't encrypt. You'll use the usb key just to decrypt using a passphrase. It's to protect yourself from tempering.
>why cucks living in your country allow that? your country need to be nuked or bombed
Basically the whole west.
>>907937
kek
▶ No.910075>>910231
>>906466
>mfw live in a state where smart meters aren't mandatory
▶ No.910231>>910268
>>906466
>>906652
>>906843
>>906701
>>910075
A lot of you seem to don't know much of the facts about smart meters here. I'll give you some insight, a close relative of mine works for a company that makes these smart meters, because of being in the business, he also knows a lot about the inner workings of power distribution and electricity departments.
Smart meters were born out of a necessity. I'll give you an example which will make things easier to understand. In britain, most homes still have the older analog meters with the rotating disk thingies. They were prone to sabotage. Another major problem with these is that once every couple of months, a person has to go and read the meter, according to which the connection is billed.
This was fine and dandy for a long time, until labor rates and number of connections increased. In most first world countries, labor is very expensive, because of this, the electricity departments saw a new problem arise. They were actually losing money on labor cost of meter readers. It was unsustainable.
There was a duration in Britain, where they couldn't afford to pay meter readers, so customers were being billed on their yearly average consumption, and not metered usage since they didn't even HAVE the data on the metered usage.
Then came the smart meter suppliers in the 90s. The idea was simple, if the electricity meter had a radio in them, they could directly report to the electricity departments and cut the inefficient human meter readers. Consumers were forced to install smart meters because a lot of people were smart enough to resist this, they had to pay less, or not at all with the older analog meters.
The newer smart meters are really advanced, they can
<report your power usage (some can even do electricity and gas, both) remotely using either GSM or some kind of mesh network
<can detect electricity theft
<some can even detect a person being shocked
And thus came the smart meter boom, no because of a greedy millionaire looking to expand his riches but an industry to survive
▶ No.910268>>910275
>>910231
Because you think engineers are gonna work on a project thinking that it's gonna hurt the population? How do you think coders at facebook are working (watch this former execute working at facebook describing how they designed the very addictive like button and the whole addfictive design of facebook)? How do you think any of these people are building the shackles the society is putting on the population?
Your pal is certainly honest, but incredibly naive, like nearly everyone working at an intellectual job. Thanks to college that only build submissive and the same as possible "human resources".
Smart meters, or anything "smart" coming in your home is a direct thread to any private life, and so to the most basic liberty. Actually, in my country, these smart meters reports electric consumption unencrypted, so any attackers who plug himself to the line can actually know what is going on in your home. Moreover, (((the government))) will now exactly what you're using. And that will be the same when IOT will invade our home. EVERYTHING will be monitored. Privacy will literally be impossible to achieve. We'll be rats in cages.
And I'm not even talking about CPL and the controversy about it. Obviously, nearly anything our society produce is poisonous, always with the slogan "the good it brings is better than the cost". Yeah, that's why half the population is gonna die from cancer (1/3 for women) before 50 years in a few generations.
That's why a lot of people is more and more touch with chronic fatigue. etc.. etc...
The more at the top of the jobs you are, the more naive you are. College teachers may be an exception.
▶ No.910275>>910337 >>910346
>>910268
>these smart meters reports electric consumption unencrypted
This is wrong, the data is encrypted and very well protected. Its even transmitted over a secure link. This is very important data you see, it can be used to interpolate socioeconomic conditions, usage habit and a lot of more, so its in the electricity companies' best interest to keep it safe.
>Moreover, (((the government))) will now exactly what you're using
Except the meter doesn't send anything other than power consumption, units consumed and some other details. The meter won't automagically know what you're using at the moment, this isn't science fiction.
▶ No.910307
>>906556
SD card read only switch only interfaces with the OS. You can easily bypass it. CDs are by far the best as you can never write to them after burning.
▶ No.910337>>910347 >>910354
>>910275
You can infer so much from power consumption. Just saw on a 500W load? Anon probably booted up his computer. With this we know not just that you booted up your computer, but when you booted up your computer. Now we can corroborate this event with your "anonymous" online activity.
▶ No.910346
>>910275
>This is wrong, the data is encrypted and very well protected.
Not where I live. And the "well protected" is seriously questionnable, with all of the leaks and stuff. Nothing is well protected regarding technology.
>Except the meter doesn't send anything other than power consumption, units consumed and some other details. The meter won't automagically know what you're using at the moment, this isn't science fiction.
It's far from enough to know a shit tone about peoples. I know it's not in real time, but it's enough to know what kind of equipement you're using.
▶ No.910347
>>910337
Exactly. That's what I'm afraid the most: even stronger traffic analysis.
▶ No.910354>>910356 >>910363
>>910337
That's bullshit like metadata. It's like watching someone walking into a hat store then watching them walk out with a store bag and assuming he was buying drugs.
▶ No.910356
>>910354
No, you just look at his credit card, or if it was cash, then you look at his internet history.
If neither figure anything related to cap, then they would not know. That's why they're pushing for a cashless society.
Have you ever heard of Palantir?
▶ No.910363
>>910354
>metadata is bullshit
Spot the normalnigger.
▶ No.910787>>910799
Just a thing about SSD and encryption: you still can use encryption on a SSD, but you can't TRIM it.
So in the case of an airgap, that don't exchange a lot of data, I think that it would be ok. But even security wise, you'll need a special treatment compared to HDDs.
▶ No.910799>>910898
>>910787
LUKS work with trim
it's a hassle to set up, but it works
▶ No.910898
>>910799
It works, but it's not advice security wise, because of how TRIM works. Sectors will be able to be localized if you activate TRIM. It is a problem by default because the partition appear full from an exterior part.
See "--allow-discards" in cryptsetup manpage.