| 1 |
On 19/03/2022 08:03, Dale wrote: |
| 2 |
> Howdy, |
| 3 |
> |
| 4 |
> I been thinking. Yea, that's dangerous. lol If I logout of KDE, or |
| 5 |
> have the screen locked, ctrl+alt=L key sequence, how secure is that if I |
| 6 |
> have good passwords that are virtually impossible to crack? My login |
| 7 |
> manager is sddm. As a example, if someone breaks into my home, is there |
| 8 |
> a easy way to get past that? I recall the old windoze 98 days where a |
| 9 |
> certain key sequence would bypass the password prompt. Is there a way |
| 10 |
> known to crooks and such that can bypass or easily defeat passwords? |
| 11 |
> |
| 12 |
I'm not aware of any such shortcuts. There are always bugs, and design |
| 13 |
flaws, and I believe there is such a design flaw in X such that it's |
| 14 |
POSSIBLE to bypass a screen-lock. |
| 15 |
|
| 16 |
> I'm aware that if a person boots up where no password is required, that |
| 17 |
> will bypass, even as root if I recall correctly. I'm just looking for |
| 18 |
> something that is even easier than that. |
| 19 |
> |
| 20 |
Actually, systemd is actively working on closing that hole ... |
| 21 |
|
| 22 |
> Also, if I have a encrypted hard drive open and mounted and then cut off |
| 23 |
> power, doesn't that disable the decryption for the drive? In other |
| 24 |
> words, I pull the plug and someone powers it back up, the drive is |
| 25 |
> encrypted again and requires a password. |
| 26 |
|
| 27 |
Yes. If you even so much as SUSPEND your system, it's considered a |
| 28 |
serious bug for the encryption key to be flushed to disk - it has to be |
| 29 |
wiped - and with no key decryption is no longer possible. |
| 30 |
> |
| 31 |
> Also, I'm planning to reorganize and encrypt some more stuff here. I |
| 32 |
> want to remove one hard drive from my home thingy. Is it really as easy |
| 33 |
> as pvmove /dev/sdx the device I want to remove? From my understanding I |
| 34 |
> need to reduce the file system first. Is that correct? I'm often |
| 35 |
> amazed at how easy some things can be done with LVM. |
| 36 |
> |
| 37 |
I think you mean pvREmove and, provided you have sufficient unused space |
| 38 |
in your PV greater or equal to the size of the drive, yes it really is |
| 39 |
that simple. Of course, if you have LESS free space, LVM will be unable |
| 40 |
to move everything off sdx and you're going to lose data. |
| 41 |
|
| 42 |
If you're planning to re-organise by adding larger disks, check out |
| 43 |
whether LVM has the equivalent of "mdadm --replace ...", where md-raid |
| 44 |
will move stuff on a running system. |
| 45 |
|
| 46 |
Cheers, |
| 47 |
Wol |
Archives