/g/ - Technology

install openbsd

[Make a Post]
[X]





The Final HDD Nanonymous No.9303 [D][U][F][S][L][A][C]
File: fdbd866b28919171c8691dbd8d0af88309a417082f6603102bf2e22f967aa3e9.jpg (dl) (65.87 KiB)
is it better to have your main data HDD as internal or external drive?
is it better to connect it with SATA, PATA, USB2.0? which doesn't have DMA (Direct Memory Access)?
how to install open source firmware on my botnet HDD?

Nanonymous No.9305 [D] >>9335
buy some archival blue rays

Nanonymous No.9306 [D][U][F] >>9312 >>9325
File: b17d6d46822206c3f1056868258f94650f4c30111726dfb6991ea7cd4dbde246.jpg (dl) (14.36 KiB)
microwave your whole system after drilling holes in it, finish off with a sledge hammer as you transfer it to the dump (note: not the dumpster outside your abode or whatever, go to the fucking dump)

okay let's get real though, extern HDs are slow as shit because they have to pass through USB 2.0
Even if you have USB 3.0 (which means your fucking computer is probably pozzed as shit unless you spent a shiton of money on it) it's slow as shit
just leave the fucking outer cover off then pull the HD when you think the glowers are gonna come get you for whistle blowing in minetest
encrypt it too

maybe take a shit in it for extra HP

Nanonymous No.9308 [D] >>9313 >>9335
make a tiny linux varient thats only purpose is to dd if=/dev/zero any other connected drives

Nanonymous No.9310 [D] >>9335 >>9338
>how to install open source firmware on my botnet HDD?
You can't. At the moment there's no open firmware for HDDs, only for one SSD model.
>better to have your main data HDD as internal or external drive?
Internal.
>is it better to connect it with SATA, PATA, USB2.0?
SATA.

Nanonymous No.9312 [D] >>9319
>>9306
>Even if you have USB 3.0 (which means your fucking computer is probably pozzed as shit unless you spent a shiton of money on it)
Wait, what?

Nanonymous No.9313 [D]
>>9308
That is too slow. You want to have have all your drives FDE'd and have a shortcut for overwriting the LUKS header with /dev/random. Provided you have modern harddrives a single pass will be enough.

Nanonymous No.9316 [D]
try harder, noob.

Nanonymous No.9319 [D] >>9335
>>9312
Only newer computers have USB 3.0.
Newer computers as a rule don't have coreboot support or any kind of libre firmware.
Only one I can think of is the Talos II Secure Workstation, which costs a shiton of money.
Thus if you have USB 3.0 and didn't spend a shiton of money, your computer is pozzed.

Nanonymous No.9325 [D]
>>9306
USB 2.0 doesn't even need to be pozzed. every implementation is made by complete retards who cant go 5 seconds without introducing a stack smasing vuln (IN NON-PERF-CRITICAL CODE!!!)

Nanonymous No.9335 [D] >>9337 >>9372 >>9378
>>9305
>buy some archival blue rays
how do you download files to blue rays?
how do you store swap on blue rays?
how do you store temp files on blue rays?

>okay let's get real though, extern HDs are slow as shit because they have to pass through USB 2.0
how is that slow? USB 2.0 has theoretical 60MB/s which is fast. or did you mean the access time and tiny file performance will be much worse than ATA/SATA HDD? can you back that up with some data and evidence?

>Even if you have USB 3.0
do not have, but there are PCI cards for USB 3.0

>it's slow as shit
why

>just leave the fucking outer cover off then pull the HD when you think the glowers are gonna come get you for whistle blowing in minetest
I was thinking of even improved method. You pull out the real disk, then you put some fake one that will be pretending to be real. the real one you hide in some smart way
so the glowniggs take the PC and are happy, but they take it with fake disk inside

>encrypt it too
already encrypted. I am asking more about how to prevent HDD firmware from accessing system memory

>>9308
>make a tiny linux varient thats only purpose is to dd if=/dev/zero any other connected drives
why would I destroy the data?

>>9310
>You can't. At the moment there's no open firmware for HDDs, only for one SSD model.
why linux/coreboot/trannyboot niggs won't make it? HDD is not a spaceship, shouldn't be hard

>>9319
>Newer computers as a rule don't have coreboot support or any kind of libre firmware.
and they have strong hardware backdoors like Management Engine

Nanonymous No.9337 [D] >>9339 >>9353 >>9390
>>9335
>why linux/coreboot/trannyboot niggs won't make it? HDD is not a spaceship, shouldn't be hard
Ask them. Coreboot is meant to be a BIOS replacement. Not a universal firmware for whatever you attach to your PCB.
http://openssd-project.org/
http://www.openssd.io/index.html
https://github.com/openssd/openssd

We're not here to spoonfeed you a solution to your imaginary threat model. Make realistic questions and we'll answer them seriously.
>HDD firmware from accessing system memory
That's not a threat for non-DMA interfaces. It is 'possible' for the firmware to record your decrypting passphrase in it's internal EPROM (and then be physically extracted by someone using a cable), but it will not modify your encrypted files (encryption is done before it gets written to the storage media). These are all theoretical, no PoC was yet made.

Nanonymous No.9338 [D] >>9339
>>9310
>You can't. At the moment there's no open firmware for HDDs, only for one SSD model.
Which model has open firmware?

Nanonymous No.9339 [D]
>>9338
See links I posted above >>9337
To be specific, you can buy here:
http://crz-mart.com/shop/shopbrand.html?type=X&xcode=003

The "Cosmo" platform is the newest. After you buy, read the manual:
https://github.com/Cosmos-OpenSSD/Cosmos-OpenSSD/raw/master/Document/Cosmos%20OpenSSD%20Board%20Starter's%20Guide%20v1.1.pdf

Nanonymous No.9353 [D] >>9390
>>9337
>Ask them. Coreboot is meant to be a BIOS replacement. Not a universal firmware for whatever you attach to your PCB.
what's the point of open source BIOS for motherboard if your other devices will have backdoored BIOS and hardware?

>http://openssd-project.org/
this is for ssd, so it's useless

>That's not a threat for non-DMA interfaces.
which interfaces are DMA, which aren't? USB 1.1, USB 2.0, USB 3.0, ATA, SATA, SCSI?

>It is 'possible' for the firmware to record your decrypting passphrase in it's internal EPROM (and then be physically extracted by someone using a cable), but it will not modify your encrypted files (encryption is done before it gets written to the storage media).
if HDD firmware can read password and store locally, then encryption is broken. how to prevent this?

Nanonymous No.9372 [D] >>9385
>>9335
>why is USB slow
For a hard drive it is slow, and will bottleneck your performance.

Nanonymous No.9378 [D][U][F] >>9385
File: 3400ddbad8c4106637b220c12af8f89fe96f20e57d5d10f35a05e5496c3bfde5.png (dl) (5.34 KiB)
>>9335
You can get USB3.0 PCIe adapters. There are a few boards that support coreboot that you could plug one of those into. The main problem nowadays with x86, are the CPU vulnerabilities, so even if you have fixed firmware, it sounds like some of the CPUs won't be.

Nanonymous No.9385 [D]
>>9372
>For a hard drive it is slow, and will bottleneck your performance.
what kind of performance? sequential transfer, access time and small files? show data

>>9378
>You can get USB3.0 PCIe adapters.
but is there any advantage of USB3.0 over SATA? like if sata allow DMA but USB3.0 not?

>The main problem nowadays with x86, are the CPU vulnerabilities, so even if you have fixed firmware, it sounds like some of the CPUs won't be.
the biggest vulnerability is ME and PSP. don't have them. meltdown is also easy to avoid. only spectre is hard to avoid, but it's smaller vulnerability

sage sage No.9390 [D] >>9410
>>9337 (me)
>>9353
>HDD firmware can read password
It doesn't. I just explained above.

First learn how to write and do basic research like a human being and not like a monkey. Then I can answer you. This is not 4chan/8ch.

Nanonymous No.9410 [D] >>9414
>>9390
It does. here you explained it:

>It is 'possible' for the firmware to record your decrypting passphrase in it's internal EPROM (and then be physically extracted by someone using a cable), but it will not modify your encrypted files (encryption is done before it gets written to the storage media).

Nanonymous No.9414 [D] >>9417 >>9500
>>9410
A very unlikely to be used security hole, but the point of this thread non-the-less.

Nanonymous No.9417 [D]
>>9414
>A very unlikely to be used security hole
why would reading encryption password be unlikely used?

it is similar to how Apple and other phones record your GPS coordinates all the time and store it in local file, so when police takes your phone they can read where you moved, even if you had no cellular connection

Nanonymous No.9500 [D]
>>9414
t. author of HACKERS USED SOPHISTICATED METHODS news articles

Nanonymous No.9698 [D] >>9708
all is botnet
HDD have their own circuit and firmware. they should be without it, like CD/DVD/tape

Nanonymous No.9701 [D] >>9702
we now have hard drive and solid drive, firm drive when?

Nanonymous No.9702 [D]
>>9701
The fuck is a firm drive?

Maybe a new technology will emerge and be dubbed that.
Is there anything superior lurking around?

Nanonymous No.9708 [D]
>>9698
>like CD/DVD/
Those are write-once media. Also, their writer does have firmware and was already exploited before:
https://github.com/scanlime/coastermelt/