[fpc-other] disk "glasses"
Roland Schäfer
roland.schaefer at fu-berlin.de
Wed Aug 13 10:48:16 CEST 2014
On 08/13/2014 09:58 AM, duilio foschi wrote:
>> but having two or more applications that concurrently write to a single file is a bad(TM) idea
>
> all operating systems and all db services like VirtualBox, Firebird
> etc allow that.
(1) Operating systems may allow you to access files from more than one
process, but they do not guarantee that this doesn't ruin your files in
terms of making inconsistent changes. On encrypted files, especially
large ones, the damage would be even worse (i.e., most likely total and
highly unrecoverable).
(2) I'm not sure how VirtualBox fits in here. If you mean that it allows
you to access files from host and guest system simultaneously, then see (1).
(3) Database products allow you to access DATA BASES from several
processes/clients via their engine (e.g., a through a local or web
service). This is entirely different from accessing FILES simultaneously
from independent processes – and one of the aspects that makes writing
database applications complicated.
> The product I look for must be smart enough :)
I think the smartest option is to use standard available disk or home
folder encryption, because it works. I doubt that DiskGlasses™ would
ever work.
>> Btw. a little information regarding TrueCrypt:
>
> TC is secure enough for my needs.
What? Quite honestly, I do not see why it is necessary to protect your
source code in the way you want to do it, even for closed-source
projects. However, if it is that important, I suggest you just encrypt
your files using a piece of software which has NOT been declared
insecure by its developers, or has been (even worse!) hijacked by
government agencies and/or criminal elements. There are many options:
http://en.wikipedia.org/wiki/Comparison_of_disk_encryption_software
In other words, if it is really reasonable that you encrypt your source
code (maybe even including plausible deniability tricks), then TrueCrypt
is definitely NOT enough for your needs.
In addition to using any secure file encryption, just work offline on a
computer the hardware of which (to the best of your knowledge) has not
been tampered with.
Best,
Roland
More information about the fpc-other
mailing list