Jump to content



Photo

Secure File Storage - host it in RAM


  • Please log in to reply
15 replies to this topic

#1 +ChuckFinley

ChuckFinley

    member_id=28229

  • 9,707 posts
  • Joined: 14-May 03

Posted 17 May 2014 - 16:27

I don't understand why this isn't a bigger thing than it is....I was just thinking of this earlier....

 

So the likes of Dropbox,Mega, Insert Cloud Hosted Storage name here. They all store data on physical disks presumably.....

 

Why not run multiple instances (Maybe as a VM) of any Live CD OS. Host whatever content you want in a RAM disk. If the federalis want to come and check out your server estate for whatever reason. Leaking some corporate documents etc etc then just reboot the host or cut the power (To the server or to the building if it came to it). Everything is gone without a trace. Obviously if it got "big/popular" then you would need TB's or RAM but then again that is moot because it would be popular aka making money and also the cost of tech is becoming ever cheaper. We are closer to Virtual Server Farms with physical servers and 512GB RAM as it is anyway. If you make it exclusive to start with then starting out with say 500mb of storage enough to hold enough corperate sleaze for a few weeks/months of press anyway. You could have multiple VM's running a CD Based OS Hosting your files but not big enough to host any pirated content anyway so that eliminates that problem. This isn't what it would be used for anyway.... Obviously if it got rebooted everything is lost but something tells me that you wouldn't care about that because your not hosting a eCommerce site this way. 

 

Thoughts? 

 

Think Dropbox mashup Wiki Leaks Running in RAM. 

 

 




#2 Anibal P

Anibal P

    Neowinian

  • 4,285 posts
  • Joined: 11-June 02
  • Location: Waterbury CT
  • OS: Win 8.1
  • Phone: Android

Posted 17 May 2014 - 16:41

If you can't see why this is a bad idea, then I won't taker the time to enlighten you, but it is a really bad idea 



#3 OP +ChuckFinley

ChuckFinley

    member_id=28229

  • 9,707 posts
  • Joined: 14-May 03

Posted 17 May 2014 - 16:43

You have the added bonus if any Three letter agency raided the place you were hosting this, They wanted to seize the equipment they would have to power down the equipment and the rest is history. Literally.  :shiftyninja:

 

Think of it as a One Time Pad (Server)



#4 Ian W

Ian W

    Physical presence asserted.

  • 1,397 posts
  • Joined: 01-March 13
  • OS: Windows Vista

Posted 17 May 2014 - 16:48

And if your power goes out, your files disappear. Not a good backup solution.

If you're that concerned about a three letter agency, then you're better off keeping your files in local storage.



#5 OP +ChuckFinley

ChuckFinley

    member_id=28229

  • 9,707 posts
  • Joined: 14-May 03

Posted 17 May 2014 - 16:55

And if your power goes out, your files disappear. Not a good backup solution.

If you're that concerned about a three letter agency, then you're better off keeping your files in local storage.

 

Yeah I don't think that's the point. 



#6 Kelxin

Kelxin

    Neowinian

  • 607 posts
  • Joined: 08-April 04

Posted 17 May 2014 - 16:55

You might want to read more on what heartbleed did also....



#7 Ian W

Ian W

    Physical presence asserted.

  • 1,397 posts
  • Joined: 01-March 13
  • OS: Windows Vista

Posted 17 May 2014 - 17:01

Yeah I don't think that's the point. 

What is the point, then?
 

[Emphasis mine]
 

I don't understand why this isn't a bigger thing than it is....I was just thinking of this earlier....

 

So the likes of Dropbox,Mega, Insert Cloud Hosted Storage name here. They all store data on physical disks presumably.....

 

Why not run multiple instances (Maybe as a VM) of any Live CD OS. Host whatever content you want in a RAM disk. If the federalis want to come and check out your server estate for whatever reason. Leaking some corporate documents etc etc then just reboot the host or cut the power (To the server or to the building if it came to it). Everything is gone without a trace.



#8 n_K

n_K

    Neowinian Senior

  • 5,376 posts
  • Joined: 19-March 06
  • Location: here.
  • OS: FreeDOS
  • Phone: Nokia 3315

Posted 17 May 2014 - 17:30

This is done on one email service I know of.
The reason no-one bothers to do it is because of the RAM retention rule, when you power off your PC, RAM contents is not lost, and yes, it is entirely possible to recover all contents of files that were in the system RAM after it's been off, and the FBI/etc. have been doing this for years already.



#9 +warwagon

warwagon

    Only you can prevent forest fires.

  • 26,456 posts
  • Joined: 30-November 01
  • Location: Iowa

Posted 17 May 2014 - 17:44

This is done on one email service I know of.
The reason no-one bothers to do it is because of the RAM retention rule, when you power off your PC, RAM contents is not lost, and yes, it is entirely possible to recover all contents of files that were in the system RAM after it's been off, and the FBI/etc. have been doing this for years already.

 

Yep you have to hit it with liquid nitrogen  :D



#10 elenarie

elenarie

    Newbie .NET / game dev

  • 1,205 posts
  • Joined: 23-March 14
  • OS: Windows 8.1 Pro x64
  • Phone: Lumia 920 Yellow

Posted 17 May 2014 - 17:46

The reason no-one bothers to do it is because of the RAM retention rule, when you power off your PC, RAM contents is not lost, and yes, it is entirely possible to recover all contents of files that were in the system RAM after it's been off, and the FBI/etc. have been doing this for years already.

 

Unless you kill it with fire.



#11 n_K

n_K

    Neowinian Senior

  • 5,376 posts
  • Joined: 19-March 06
  • Location: here.
  • OS: FreeDOS
  • Phone: Nokia 3315

Posted 17 May 2014 - 22:51

Unless you kill it with fire.

Then you'd get charged with tampering with evidence.



#12 devn00b

devn00b

    Bong On

  • 484 posts
  • Joined: 28-September 03
  • Location: Temecula Valley

Posted 17 May 2014 - 22:58

Then you'd get charged with tampering with evidence.

 

 

Haha and/or probably arson. that said a nutjob I worked with once told me he used to keep det cord running between his ram, and his hdd's so if he ever needed to he could do a small explosion on em and call it a day.

 

No idea what he was in to..but I did back away slowly!



#13 elenarie

elenarie

    Newbie .NET / game dev

  • 1,205 posts
  • Joined: 23-March 14
  • OS: Windows 8.1 Pro x64
  • Phone: Lumia 920 Yellow

Posted 17 May 2014 - 23:27

Haha and/or probably arson. that said a nutjob I worked with once told me he used to keep det cord running between his ram, and his hdd's so if he ever needed to he could do a small explosion on em and call it a day.

 

No idea what he was in to..but I did back away slowly!

 

Was your friend called Mel Gibson?



#14 jren207

jren207

    Neowinian

  • 377 posts
  • Joined: 06-February 04
  • Location: Lincolnshire, UK
  • OS: Windows 7
  • Phone: Samsung Galaxy Nexus

Posted 17 May 2014 - 23:59

Could always have your systems HotPlug 'd...



#15 Raa

Raa

    Resident president

  • 12,750 posts
  • Joined: 03-April 02
  • Location: NSW, Australia

Posted 17 May 2014 - 23:59

I'll just remind you that researchers have successfully retrieved data (including private keys) from memory before.

And no, I don't mean flash ram. :p