this post was submitted on 30 Nov 2023
31 points (91.9% liked)

Linux

58082 readers
106 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 6 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
31
How safe are my data if my hard drive isn't encrypted? (feddit.de)
submitted 2 years ago* (last edited 2 years ago) by [email protected] to c/[email protected]
41 comments fedilink hide all child comments
 

[email protected]

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 2 years ago (11 children)

Well... shit. Thank you for your great advice. I'm gonna look for how I can secure my data.

[–] [email protected] 7 points 2 years ago (4 children)

Out of curiosity what sort of safety did you think an unencrypted hard drive had?

I mean no offense and I think it's a perfectly fine question to ask, I just want to understand what you expected.

[–] [email protected] 1 points 2 years ago (3 children)

I had the expection that Linux is already set up as a multi-user environment and has that feature built in.

Of course that "isolation" of data, as I had it in my mind, wouldn't be really secure, but it doesn't have to be that for me. I just don't want anyone to access it easily.

[–] [email protected] 4 points 2 years ago

Simplified, there's two layers to data protection, physical and logical. Linux or basically any correctly configured modern operating system provides logical protection, i.e. access under the running OS is only granted to authorized users. Granted you can still put holes in here, e.g. a webserver is misconfigured and allows access to any user to all files it can read. However, from the OS perspective, everything is fine, as the webserver can still only read what it's allowed to.

Data encryption protects data at rest, i.e. when no operating system enforcing the logical protection is running. The case has already been described so I'm not gonna repeat that here.

It's important to understand that in general, these two measures are completely seperate from each other. Device encryption won't help against logical attacks, and logical protection won't help against offline attacks. You need both if you can't rule out an attack vector completely (i.e. your server sits in a secure safe that can't be opened by anyone not authorized to, then encryption might not be necessary).

load more comments (2 replies)
load more comments (2 replies)
load more comments (8 replies)