Collaborate Disseminate
The discussion about how to mitigate human bias in forensic science continued in September. Inclusiveness is a key part of this, not just in terms of racial, gender, ability, or other identity, but also in terms of expertise. This month … Read m… Continue reading Encouraging Different Perspectives in Digital Forensics: September Research
Please let me know if this is not the appropriate forum for this question, and I will move it.
I would like to sync my files, as dropbox does for example. However, I want my files to be very secure. The main things I want are for it to be … Continue reading Best option for secure cloud file sync [migrated]
If I move a file within the same drive or partition, suppose from one folder to another, and then shred that file with a file shredder, would it still be recoverable? Is there still some trace of that file left in the previous location it … Continue reading If I move a file within the same drive or partition and then shred that file with a file shredder, would it still be recoverable?
CVE-2021-33909 AKA "Sequoia" is a vulnerability against the filesystem code within the Linux kernel. According to the description of the vulnerability from Qualys
Successful exploitation of this vulnerability allows any unprivil… Continue reading How does Sequoia allow unprivileged users to get root if it requires mounting a filesystem?
Here is how integritysetup from the cryptsetup package in Linux works. A user provides an authentication key to the OS when reading or writing data to a file system. When reading, the OS only returns a data block if it was written with the… Continue reading asymmetric file system authentication
Technology is becoming more effective at early ransomware detection. Solutions can often automatically shut down attacks and minimize the damage. It is reasonable to conclude, however, that there is no truly impenetrable ransomware defense. The more c… Continue reading Disrupting Ransomware with Advanced File System Techniques
Would it be possible to write a file to a directory outside of the uploads folder if the $ext variable is used controlled and unrestricted? The uploads directory is empty except for the freshly created file.
val file = new File("uploa… Continue reading Unrestricted file write in Java
Suppose there is a file hosting server, and most filenames are strings with mostly CJK characters. Transmitting those characters in HTTP GET requests requires encoding them using UTF-8 (x3 overhead) then URL-encode escaping (another x3 ove… Continue reading Additional verification, sanitization for CJK paths in URLs
Sources seem hard to come by regarding Windows’ behavior regarding TRIM and formatting.
This now removed blog entry on msdn.com states that since Windows 7, TRIM is sent to the SSD when formatting to NTFS (emphasis mine):
In Windows 7, if… Continue reading Does formatting with FAT on Windows 10 send TRIM to the SSD? [migrated]
I have a continuously upgraded and minimalistically developed LAMP environment with an all-core CMS website.
The main reason that my contact form in my website is backend (PHP) instead frontend (vanilla JavaScript) is to protect my email a… Continue reading How to protect an email address in a php file?