Joined: Feb. 2007
||Posted: June 22 2007,02:31
|it seems that encryption is about the only way to really protect your data|
True, and that goes for whatever OS you run. A live CD can be a useful tool in good hands or it can mean serious compromise of a system in bad hands. There's not much that can be done to prevent such access aside from setting BIOS to not boot from CDROM (which, of course, can be changed easily back so at best it's a small hurdle). And in most cases, even encrypted files wouldn't be completely safe from deletion or attempts at file corruption with live CD access. (That's a case for non-localized backups and for using an application like truecrypt or even steganography to hide data in a hidden block or in files where it would presumably be out of open sight from attackers.)
Running frugal on a dual boot system without using the secure cheatcode allows anyone who boots DSL to access other partitions. As secure as the read-only frugal partition is (reboot! restore!), it does nothing to protect the data on any other partition on the system. That's one of the specific issues I raise in my hardening paper.
"It felt kind of like having a pitbull terrier on my rear end."
-- meo (copyright(c)2008, all rights reserved)