Lately I have been thinking about my #airgapped systems. I currently use NNCP over USB drives to get data to/from them. Highly secure #sneakernet, but not the most practical sometimes. In thinking of alternatives that don't involve a whole network stack, I keep coming back to #serial lines.

Going beyond the old 115.2Kbps is now common; Gearmo has some that use a FTDI chipset rated at 920Kbps over RS-232, but in my experience can hit 2Mbps. 1/

@Seirdy @neurovagrant Case in point: every big provider will do #Govware #Backdoors because otherwise their business model would be illegal around the globe as per #Telco laws..

The only exceptions are organziation-internal & privately self-hosted systems.

Thus everythibg that is as #centralized as #Signal is inherently insecure.

Whereas I can run an #XMPP server #airgapped in a #LAN or even inside a #VPN that is only accessible via #Tor...

@cashir @KeyEm @konstantin @kantorkel @bsi @digitalcourage @torproject @forthy42

Wenn es möglich wäre, #Tor gewaltsam abzuschalten oder Netzwerkseitig #OnionServices stillzulegen, dann hätten diverse Staaten dies bereits getan...

Hinzu kommt dass #Tor und auch #I2P nicht die einzigen Methoden sind, unerkannt zu kommunizieren...

Jede*r der sich mit #GnuPG befasst und nen @Raspberry_Pi #Pi0 benutzen kann, dürfte bereits in der Lage sein, #airgapped zu verschlüsseln... https://github.com/KBtechnologies/PocketCrypto

I’ll be talking this Thursday on the Kubernetes & cloud native meetup in Berlin, about #Airgapped #Kubernetes. Come by :) https://www.meetup.com/berlin-kubernetes-meetup/events/293992360/

It worked! I just logged into Tusky using my Badger2040 TOTP app! Blog post coming soon! #pimoroni #eink #totp #2fa #airgapped

CASPER attack steals data using air-gapped computer's internal speaker / Researchers at the School of Cyber Security at Korea University, Seoul, have presented a new covert channel attack named CASPER can leak data from air-gapped computers to a nearby smartphone at a rate of 20bits/sec. /sp /

https://www.bleepingcomputer.com/news/security/casper-attack-steals-data-using-air-gapped-computers-internal-speaker/

#airgap #airgapped #agentbtz
#binary #casper #casperattack
#computerscience #cyberattack
#cybercrime #cybersecurity
#ethicalhacker #ethicalhacking
#hack #hacked #hacker
#hackers #hacking
#hackingtools
#informationsecurity
#infosec #keylogger
#korea #linux #malware
#morsecode #pentesting
#programming #remsec
#security #smartphone
#tech #technology

@joenash *nodds in agreement*

People may need to admin shit on the go in #EDGEland or even do #Sysadmin & #Development tasks in a literally #airgapped "black site" with intentionally no internet connectivity.

Like... IDK literal grid operators?

#WiFi counts as #airgapped, right?

#Airgapped computers can have sensitive data intercepted via the use of planted #malware and a #receiver (such as a laptop or smartphone) that gets the data through #electromagnetic radiation. Pretty wild! #Countermeasures have their own drawbacks, though curiously the method of interception doesn't seem to work that well with a laptop.

https://www.bleepingcomputer.com/news/security/air-gapped-pcs-vulnerable-to-data-theft-via-power-supply-radiation/

Be aware - air gapping isn't always completely impenetrable

https://www.darkreading.com/attacks-breaches/report-air-gapped-networks-vulnerable-dns-attacks

#airgapped #dns #cyberattacks

RT @CpHamster
Just playing around with my new @COLDCARDwallet and curious if other users of ColdCard have setup and used Passphrases as their main wallet and kept the a small amount tied to the default wallet. Or have skipped using Passphrases altogether. #Bitcoin #ColdStorage #Airgapped

RT @realSatoshiN
@21milinfinity An old! (to avoid #AMT in #bios) #airgapped computer and @COLDCARDwallet seems to me the most safe solutions for #hardware #wallets. Everything that needs an #usb #connection to operate, needs the #web or has closed #firmware (yes, sorry, #raspberrypi) is #unsafe. #satoshin

Uses for #sneakernet 7/ I think that #airgapped machines are desperately underused. We all understand their #security benefits (I hope), but probably the reason we don't often use them is because they're so HARD to use.

Thanks to apt-offline, I even keep my airgapped machine updated via sneakernet!

Uses for #sneakernet 6/ I got started with this by desiring an #airgapped machine for sensitive things like tax records, #GnuPG signing, etc. If I was going to be using this often - say, daily or weekly - I didn't want to manually have to worry about "did this data successfully get there" all the time. I know how often USB drives fail. So, reliable sneakernet FTW. It works beautifully and can even send backups to my backup server (which is also sneakernet-capable).

https://www.bleepingcomputer.com/news/security/air-gapped-systems-leak-data-via-sata-cable-wifi-antennas/ #security #attack #cyberattack #airgapped #sata #wifi

Remote directory tree comparison, optionally #asynchronous and #airgapped with #NNCP or #UUCP: https://changelog.complete.org/archives/10198-remote-directory-tree-comparison-optionally-asynchronous-and-airgapped I take a look at several tools that can create summaries of filesystems, including permissions, sizes, and even file #hashes. Useful for verification of #backups and can be optionally used #offline.

Anyone using #airgapped machines?