I been thinking. Yea, that's dangerous. lol If I logout of KDE, or
have the screen locked, ctrl+alt=L key sequence, how secure is that if I
have good passwords that are virtually impossible to crack? My login
manager is sddm. As a example, if someone breaks into my home, is there
a easy way to get past that? I recall the old windoze 98 days where a certain key sequence would bypass the password prompt. Is there a way
known to crooks and such that can bypass or easily defeat passwords?
Howdy,
I been thinking. Yea, that's dangerous. lol If I logout of KDE, or
have the screen locked, ctrl+alt=L key sequence, how secure is that if I
have good passwords that are virtually impossible to crack? My login manager is sddm. As a example, if someone breaks into my home, is there
a easy way to get past that? I recall the old windoze 98 days where a certain key sequence would bypass the password prompt. Is there a way
known to crooks and such that can bypass or easily defeat passwords?
I'm aware that if a person boots up where no password is required, that
will bypass, even as root if I recall correctly. I'm just looking for something that is even easier than that.
Also, if I have a encrypted hard drive open and mounted and then cut off power, doesn't that disable the decryption for the drive? In other
words, I pull the plug and someone powers it back up, the drive is
encrypted again and requires a password.
Also, I'm planning to reorganize and encrypt some more stuff here. I
want to remove one hard drive from my home thingy. Is it really as easy
as pvmove /dev/sdx the device I want to remove? From my understanding I need to reduce the file system first. Is that correct? I'm often
amazed at how easy some things can be done with LVM.
On 2022-03-19 03:03, Dale wrote:
I been thinking. Yea, that's dangerous. lol If I logout of KDE, orThe only secure lockscreen is XScreenSaver. https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
have the screen locked, ctrl+alt=L key sequence, how secure is that if I
have good passwords that are virtually impossible to crack? My login
manager is sddm. As a example, if someone breaks into my home, is there
a easy way to get past that? I recall the old windoze 98 days where a
certain key sequence would bypass the password prompt. Is there a way
known to crooks and such that can bypass or easily defeat passwords?
On 2022-03-19 06:08, Dale wrote:
Anna “CyberTailor” wrote:Add a custom keybinding for Ctrl+Alt+L so it executes:
The only secure lockscreen is XScreenSaver.I have that installed here. Question now is, is that what locks my
https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying
to figure out how that works so I can get it to be used with KDE and any
other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
xscreensaver-command --lock
On 19/03/2022 11:08, Dale wrote:
I have that installed here. Question now is, is that what locks my
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm
trying
to figure out how that works so I can get it to be used with KDE and any
other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
Try "Windows"-L. It works on my gentoo system here ...
Cheers,
Wol
.
I have that installed here. Question now is, is that what locks my
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying
to figure out how that works so I can get it to be used with KDE and any other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
Anna “CyberTailor” wrote:
The only secure lockscreen is XScreenSaver. https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
I have that installed here. Question now is, is that what locks my
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying
to figure out how that works so I can get it to be used with KDE and any other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
On 19/03/2022 08:03, Dale wrote:
Howdy,I'm not aware of any such shortcuts. There are always bugs, and design
I been thinking. Yea, that's dangerous. lol If I logout of KDE, or
have the screen locked, ctrl+alt=L key sequence, how secure is that if I
have good passwords that are virtually impossible to crack? My login
manager is sddm. As a example, if someone breaks into my home, is there
a easy way to get past that? I recall the old windoze 98 days where a
certain key sequence would bypass the password prompt. Is there a way
known to crooks and such that can bypass or easily defeat passwords?
flaws, and I believe there is such a design flaw in X such that it's
POSSIBLE to bypass a screen-lock.
I'm aware that if a person boots up where no password is required, thatActually, systemd is actively working on closing that hole ...
will bypass, even as root if I recall correctly. I'm just looking for
something that is even easier than that.
Also, if I have a encrypted hard drive open and mounted and then cut off
power, doesn't that disable the decryption for the drive? In other
words, I pull the plug and someone powers it back up, the drive is
encrypted again and requires a password.
Yes. If you even so much as SUSPEND your system, it's considered a
serious bug for the encryption key to be flushed to disk - it has to
be wiped - and with no key decryption is no longer possible.
I think you mean pvREmove and, provided you have sufficient unused
Also, I'm planning to reorganize and encrypt some more stuff here. I
want to remove one hard drive from my home thingy. Is it really as easy
as pvmove /dev/sdx the device I want to remove? From my understanding I
need to reduce the file system first. Is that correct? I'm often
amazed at how easy some things can be done with LVM.
space in your PV greater or equal to the size of the drive, yes it
really is that simple. Of course, if you have LESS free space, LVM
will be unable to move everything off sdx and you're going to lose data.
If you're planning to re-organise by adding larger disks, check out
whether LVM has the equivalent of "mdadm --replace ...", where md-raid
will move stuff on a running system.
Cheers,
Wol
On 2022-03-19 06:08, Dale wrote:
Anna “CyberTailor” wrote:
The only secure lockscreen is XScreenSaver. https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
I have that installed here. Question now is, is that what locks my
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying
to figure out how that works so I can get it to be used with KDE and any other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
Add a custom keybinding for Ctrl+Alt+L Ctrl+Alt+Lso it executes:
xscreensaver-command --lock
On Saturday, 19 March 2022 12:33:16 GMT Anna “CyberTailor” wrote:
On 2022-03-19 06:08, Dale wrote:Ctrl+Alt+L locks the screen here, after logging in to Plasma via SDDM. I didn't set that myself, so it seems to be a default value.
Anna “CyberTailor” wrote:Add a custom keybinding for Ctrl+Alt+L Ctrl+Alt+Lso it executes:
The only secure lockscreen is XScreenSaver.I have that installed here. Question now is, is that what locks my
https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying >>> to figure out how that works so I can get it to be used with KDE and any >>> other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
xscreensaver-command --lock
I'm moving to encrypting some directories. To do that, I need a empty
drive first to put encryption on. Then I can encrypt, move stuff that
isn't encrypted then add drives back until everything that I want is encrypted. I'm assuming I can have one large logical volume that is encrypted across more than one drive. Right now, I have 3 drives for /home. I got space to remove one and then start encrypting and adding
other drives to the encrypted stuff.
Peter Humphrey wrote:
On Saturday, 19 March 2022 12:33:16 GMT Anna “CyberTailor” wrote:
On 2022-03-19 06:08, Dale wrote:Ctrl+Alt+L locks the screen here, after logging in to Plasma via SDDM. I
Anna “CyberTailor” wrote:Add a custom keybinding for Ctrl+Alt+L Ctrl+Alt+Lso it executes:
The only secure lockscreen is XScreenSaver.I have that installed here. Question now is, is that what locks my
https://www.jwz.org/blog/2021/01/i-told-you-so-2021-edition/
screen or is KDE/sddm/something else doing that besides xscreensaver.
From my poking around, I don't think I'm using xscreensaver. I'm trying >>>> to figure out how that works so I can get it to be used with KDE and any >>>> other GUI I use. Being able to use ctrl+alt=L would be a nice bonus.
xscreensaver-command --lock
didn't set that myself, so it seems to be a default value.
I think when I logout and back in, it may work better. I put in a
config file in KDE autostart and when I want to lock the screen, it
triggers xscreensaver instead of the usual KDE lock screen. That's the theory anyway. I just finished my updates so I should be able to test
in a bit.
The only downside, it activates the screensaver and locks the screen
when I'm watching videos right now. That may change when I logout and
back in to but right now, I had to stop xscreensaver. I tend to leave
the screen saver turned off anyway and just lock the screen when I want
it to power off the monitor etc.
We'll know in a bit. I'll post updates in case someone else here wants
to switch or googles up this thread.
Dale
:-) :-)
Another issue, ctrl+alt+L doesn't trigger xscreensaver but still<SNIP>
triggers KDE's screen saver. It can likely be fixed but the problem
above has to be fixed first.
Howdy,
I been thinking. Yea, that's dangerous. lol If I logout of KDE, or
have the screen locked, ctrl+alt=L key sequence, how secure is that if I
have good passwords that are virtually impossible to crack? My login manager is sddm. As a example, if someone breaks into my home, is there
a easy way to get past that? I recall the old windoze 98 days where a certain key sequence would bypass the password prompt. Is there a way
known to crooks and such that can bypass or easily defeat passwords?
They don't even need to defeat a password. If they have root, it's
trivial to unlock a locked session without knowing the password - just FYI. ...
The screen locks in linux are security by obscurity, if something is
that sensitive, don't stay logged in all the time.
There was the ORWL project a few years ago. Self-encrypting SSD drive with a TPM that would unlock it only in the presence of an encrypted RFID tag plus tapping in a code on the keypad, with all the sensitive bits wrapped in an active mesh system thatwould destroy the data if it detected any tampering.
Having it remain unlocked and capable of rebooting unless the accelerometer showed movement I think was an option since the TPM kept monitoring even if the mains power was interrupted.
Could probably do something similar these days with one of those $3 bluepill boards and one of those new 3d printers capable of embedding metal though.
The TPM in most computers doesn't dump the keys if someone tries to open the case to install hardware sniffers.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 302 |
Nodes: | 16 (2 / 14) |
Uptime: | 100:50:22 |
Calls: | 6,767 |
Calls today: | 5 |
Files: | 12,295 |
Messages: | 5,376,432 |
Posted today: | 1 |