Encrypt your disks

2018-12-20 15:01:00 +0000

If you have a laptop, you should always encrypt your harddisk. If you have not already done, make this your new year’s resolution - better yet, do it today.

Loosing your laptop sucks, but it sucks a lot more if you have to fear if someone else somehow gets access to all your data. Even if you have a login-password and have all your data in the cloud, you data could still be a at rest in the temporary folder. And a potential thief could access all your ‘saved passwords’.

Microsoft Windows and Apple’s OS X and most Linux distribution like Ubuntu make disk encryption very easy - it’s hopefully the default on any new laptop. If you want to encrypt your disk after installation, I’d refer to the documentation of your operation system: Windows, OS X, search the web or ask a colleague or family-member.

On the operation system I am using, Kubuntu Linux, disk encryption can be chosen during installation and contrary to Linux’ reputation that’s very easy. My laptop has an SSD as main-disk containing the root dir, and an additional disk of 2TB for all other data that doesn’t fit on my SSD. Of course it’s encrypted too. At first, my configuration required me to enter a passphrase twice, once for the SSD and a second time for the additional disk. Bit of a nuisance. Thanks to this wonderful howto, I have a set-up that’s hardly less secury, but easier to use: HOWTO: Automatically Unlock LUKS Encrypted Drives With A Keyfile

The encryption key is stored on my main SSD, so I only have to enter the passphrase for that SSD. After that, the key that’s stored on the SSD is used to decrypt the second disk. As mentioned in the howto, if people get access to your root dir all is lost anyway.

Read more

GDRP update

2018-05-19 16:37:00 +0000

In less then a week GDRP will be enforced in the European Union. A good reason to update my homepage. I’ve done the following

  • Google analytics is removed from the homepage. I never look at those statistics anyway.
  • Also, sumo is removed, some embedded script which offers some functionality. Embedding script is a popular way to add functionality to your homepage, but in my opinion a display of the poor state of software development in the world. There is and should be better ways to compose functionality without loosing control.
  • For the same reason, the embedded twitter feed from my homepage is removed.
  • I still use Disquss for the comment-section on posts.

When you visit this homepage, your ip-address will be logged, but no other information that could be linked to personal. Also if you’d use VPN, Tor, or other similar software no attempt is made to reveal your true ip-address. My homepage is hosted at Transip, a Dutch provider. I pay them, which mean I am their customer and not the other way around. They don’t earn any money on advertising on my homepage.

Read more

Archive

subscribe via RSS