Gentoo Logo

About | Projects | Docs | Forums | Lists | Bugs | Get Gentoo! | Support | Planet | Wiki

Gentoo Spaceship
Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: <gentoo-security@g.o>
From: "Jeff Gercken" <JeffG@...>
Subject: Boot CD for secure remote access
Date: Wed, 23 Nov 2005 15:29:34 -0500 
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2800.1522" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2><SPAN class=765231520-23112005>I've been chewing on 
this idea for a while and am hoping someone on the list may help me with a 
concern.</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=Arial size=2><SPAN class=765231520-23112005>The notion is that 
big company B will distribute CDs to employees to use for remotely accessing 
things like mail, corporate Intranet, etc.&nbsp; The disk contains two bootable 
images.&nbsp; One is "normal" and is the first to load.&nbsp; The second 
squashed image&nbsp;is encrypted in a manner that the first image can 
decrypt.</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=Arial size=2><SPAN class=765231520-23112005>The first image 
loads, connects to Corp B and authenticates the user.&nbsp; At that point the 
key to decrypt the second image is provided and the computer chroots to the 
second image.&nbsp; This environment is considered trusted and access is 
provided into Corp B.</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=Arial size=2><SPAN class=765231520-23112005>This seems fairly 
straightforward but then why isn't anyone doing this already?&nbsp; What haven't 
I considered?&nbsp; </SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=Arial size=2><SPAN class=765231520-23112005>It's easy to use the 
word encryption but is much harder to make it work.&nbsp; Any recommendations on 
projects I should look at that may be suitable for this 
purpose?</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005>thanks,</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN 
class=765231520-23112005>Jeff</SPAN></FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV align=left>
<DIV class=MsoNormal style="MARGIN: 0in 0in 0pt; TEXT-ALIGN: center" 
align=center><SPAN style="FONT-SIZE: 10pt">
<HR align=center width="100%" color=#191c86 noShade SIZE=3>
</SPAN></DIV>
<TABLE class=MsoNormalTable 
style="MARGIN: auto auto auto 5.4pt; WIDTH: 184.85pt; mso-cellspacing: 0in; mso-padding-alt: 0in 0in 0in 0in" 
cellSpacing=0 cellPadding=0 width=246 border=0>
  <TBODY>
  <TR style="mso-yfti-irow: 0; mso-yfti-firstrow: yes; mso-yfti-lastrow: yes">
    <TD 
    style="BORDER-RIGHT: #e0dfe3; PADDING-RIGHT: 5.4pt; BORDER-TOP: #e0dfe3; PADDING-LEFT: 5.4pt; PADDING-BOTTOM: 0in; BORDER-LEFT: #e0dfe3; WIDTH: 184.85pt; PADDING-TOP: 0in; BORDER-BOTTOM: #e0dfe3; BACKGROUND-COLOR: transparent" 
    vAlign=top width=246>
      <P class=MsoNormal style="MARGIN: 4.5pt 0in 1.5pt"><SPAN 
      class=MsoHyperlink><B><SPAN 
      style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; TEXT-DECORATION: none; text-underline: none"><A 
      title=mailto:jeffg@... href="mailto:jeffg@...">Jeff 
      Gercken</A><?xml:namespace prefix = o ns = 
      "urn:schemas-microsoft-com:office:office" 
      /><o:p></o:p></SPAN></B></SPAN></P>
      <P class=MsoNormal style="MARGIN: 0in 0in 1.5pt"><SPAN 
      style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: Arial">502-292-4838 
      office</SPAN></P>
      <P class=MsoNormal style="MARGIN: 0in 0in 1.5pt"><SPAN 
      style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: Arial">502-292-5238 
      fax</SPAN></P>
      <P class=MsoNormal style="MARGIN: 0in 0in 1.5pt"><SPAN 
      style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: Arial"><A 
      title=http://www.kizan.com/ href="http://www.kizan.com/" 
      target=_blank></A></SPAN><SPAN 
      style="FONT-SIZE: 10pt; COLOR: #191c86; FONT-FAMILY: Arial"><A 
      title=http://www.kizan.com/ href="http://www.kizan.com/" 
      target=_blank>www.kizan.com</A></SPAN></P></TD></TR></TBODY></TABLE>
<DIV class=MsoNormal style="MARGIN: 0in 0in 0pt; TEXT-ALIGN: center" 
align=center><SPAN style="FONT-SIZE: 10pt">
<HR align=center width="100%" color=#191c86 noShade SIZE=3>
</SPAN></DIV></DIV>
<DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV></BODY></HTML>
Replies:
Re: Boot CD for secure remote access
-- Alexandre Dubois
Re: Boot CD for secure remote access
-- Helmut Wuensch
Re: Boot CD for secure remote access
-- Ned Ludd
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Why we need TPM in Linux kernel?
Next by thread:
Re: Boot CD for secure remote access
Previous by date:
Re: Why we need TPM in Linux kernel?
Next by date:
Re: Boot CD for secure remote access


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.