Re: [Tails-dev] Erase memory: the GRUB way

Delete this message

Reply to this message
Author: Jacob Appelbaum
Date:  
To: tails-dev
Subject: Re: [Tails-dev] Erase memory: the GRUB way
Ague Mill:
> On Sun, Aug 26, 2012 at 10:30:18AM +0000, Ague Mill wrote:
>> For the patch and some details, please see:
>> <https://tails.boum.org/bugs/sdmem_does_not_clear_all_memory/grub/>
>>
>> I have not tested it on bare metal, only qemu and bochs.
>>
>> The next step is to create a proper "standalone" GRUB image that can be
>> booted using kexec(). For reasons I don't yet understand, I have not
>> been able to do so.
>
> I have been able to create a standalone image. It even include our
> boot splash screen and a progress bar.
>
> I have not yet been able to find a way to load and execute such image
> with kexec. After several hours of struggling, I have asked help on
> grub-devel.
>
> This looks really really promising though.


Thanks for all this effort. When we released the Cold Boot paper, a few
of us thought that hardware memory controllers with built-in crypto for
the stuff in DIMMs would be the norm in no time. Boy were we wrong!

I guess soon it will be XBox360 and Tails users who are safe. ;-)

All the best,
Jacob