zlacker

[return to "“Paranoid Mode” Compromise Recovery on Qubes OS"]
1. hackus+NI1[view] [source] 2017-04-29 05:01:23
>>jerhei+(OP)
An excellent point that applies to almost any system:

The inconvenient and somehow embarrassing truth for us – the malware experts – is that there does not exist any reliable method to determine if a given system is not compromised.

◧◩
2. _sbrk+7Y1[view] [source] 2017-04-29 11:32:36
>>hackus+NI1
Total bull. Take the filesystem offline and run Tripwire over it (assuming you did this after a fresh install).

We solved this problem in the 90s. Try to keep up.

sigh

◧◩◪
3. bessel+Ke3[view] [source] 2017-04-30 10:47:07
>>_sbrk+7Y1
That doesn't help you if the code running outside your filesystem is compromised.

For example, a backdoor implanted in the disk firmware would be virtually undetectable for the vast majority of users.

[go to top]