Re: [Usability] time stamps and privacy

[Karsten Bräckelmann <guenther rudersport de>]

Forgot to add...

On Mon, 2008-04-07 at 03:55 +0200, Karsten Bräckelmann wrote:
> On Tue, 2008-03-25 at 17:47 -0400, Yuval Levy wrote:

> > No, it is not only with root access. It is with user access. Permission 
> > is irrelevant to the problem. Most of these removable media come 
> > straight out of digital cameras that use FAT.
                    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

> > The right design is to keep the thumbs on the same media where the 
> > originals are (and if applicable with same permissions as far as 
> > user/root access is concerned).

FAT doesn't know about users. Or permissions.

Also, you don't believe you can easily remove a sensitive image from
such a media, do you? You can't. No average user level application does
that [1]. Actually, it is *trivial* to rescue "deleted" images from
digital camera storage devices.

You got really sensitive data on a FAT formatted memory card? Never use
it in an environment you do not totally control or trust. Never ever
hand over that card to anyone, you do not fully trust. Deleting images
does not help at all.

  guenther


[1] In fact, doing so by ensuring overwriting data and deleting it for
good, the life time of the memory card would be about 1/10th.

-- 
char *t="\10pse\0r\0dtu\0  ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}