<html><head><style type='text/css'>p { margin: 0; }</style></head><body><div style='font-family: Times New Roman; font-size: 12pt; color: #000000'>Social engineering ~is~ hacking. In every-day life, it's how we humans, through politics and/or mob rule, steal one another's freedom away, and head blithely into a new dark age of fraternal hate, fear, and vain attempts at control. But enough of my Pollyanna attitude...<br><br>Here's my advice. These three are inter-dependent, but if you take them all together, they'll cover you against 95% of the bad poo that can happen.<br><br>1. Encrypt your entire home-folder. Your keys (and all the other things you care about) should live there.<br>2. Password protect your keys.<br>3. Take regular, ~unencrypted~ backups to a location that is not on the network. A USB drive in your basement that your wife and one trusted co-worker know about is perfect.<br><span><br><span name="x"></span>--<br>David L. Willson<br>Trainer, Engineer, Enthusiast<br>RHCE Network+ A+ Linux+ LPIC-1 Ubuntu<br>Mobile 720-333-LANS(5267)<br><br>This is a good time for a r3VOLution.<span name="x"></span><br></span><br><hr id="zwchr"><blockquote style="border-left:2px solid rgb(16, 16, 255);margin-left:5px;padding-left:5px;color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;">It might be a poor choice of words. Digital mortality, if you will? I took a job at a primarily UX/LX shop that uses certs/keys, rather then passwords to authenticate to the servers. But the computers are all laptops. It seems to me, the responsible thing to do if not using full disk encryption, is to AT LEAST encrypt my certs/keys.<br>
<br>Since I've been around people who's primary job function is security, I get allot of security news, and talk of vulnerabilities and the like. Once you see someone show you how to crack a simple password in less then 60 seconds you tend to walk away with a slightly different understanding of the internet. So I'm trying to be more responsible both in terms of how I manage my own digital assets, both on and off the clock.<br>
<br>Oh, and all the high profile hacks I've been hearing about in the news aren't helping. Couple weeks ago it was dropbox, then this last weekend it was the Mat Honan thing. Although from what I'm hearing that wasn't true hacking it was social-engineering the whole way, but that doesn't make it any less creepy. Granted, those of us with an interest in linux and foss probably aren't heavily associated with icloud, but I tend to have to walk the line for fear of never knowing which side of the operating-system border I'm going to end up on.<br>
<br>Mike Bean<br><br><div class="gmail_quote">On Fri, Aug 10, 2012 at 12:54 PM, David L. Willson <span dir="ltr"><<a href="mailto:DLWillson@thegeek.nu" target="_blank">DLWillson@thegeek.nu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div><div style="font-size:12pt;font-family:Times New Roman">What is your objective? You mentioned an increased awareness of your mortality, but I can't think of any way that encryption will help you live longer, or noticeably better.<span><br>
<br><span></span>--<br>David L. Willson<br>Trainer, Engineer, Enthusiast<br>RHCE Network+ A+ Linux+ LPIC-1 Ubuntu<br>Mobile 720-333-LANS(5267)<br><br>This is a good time for a r3VOLution.<span></span><br>
</span><br></div></div><br>_______________________________________________<br>
clue mailing list: <a href="mailto:clue@cluedenver.org" target="_blank">clue@cluedenver.org</a><br>
For information, account preferences, or to unsubscribe see:<br>
<a href="http://cluedenver.org/mailman/listinfo/clue" target="_blank">http://cluedenver.org/mailman/listinfo/clue</a><br></blockquote></div><br>
<br>_______________________________________________<br>clue mailing list: clue@cluedenver.org<br>For information, account preferences, or to unsubscribe see:<br>http://cluedenver.org/mailman/listinfo/clue</blockquote><br></div></body></html>