<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">I like to mix the systems. I use dead
trees for their security properties, and digital files for their
space efficiency.<br>
<br>
My critical documents are on an encrypted disk image, for which
the symmetric key is printed and kept offline. I have a backup key
in my safe deposit box (which are free if you ask nicely), and one
at my parents house 4000 km away. Because I'm not a total
masochist, I also keep most of the symmetric key in my password
manager.<br>
<br>
There is a risk every time the volume is mounted, but that's not
really high up on my threat model. I'm more worried about my
laptop or backup disk being stolen.<br>
<br>
If you wanted to "escrow" the key by printing a couple copies out
and giving to board members, that seems reasonably secure *and*
fault-tolerant.<br>
<br>
--Casey<br>
<br>
On 8/11/15 8:26 AM, Torrie Fischer wrote:<br>
</div>
<blockquote
cite="mid:9470748.SEGg6K2b30@singularity.oob.hackerbots.net"
type="cite">
<pre wrap="">Hi, Noisebridge.
I have a pile of Noisebridge on my desk.
<a class="moz-txt-link-freetext" href="https://dl.pushbulletusercontent.com/q5KoC71ynK1lycjdmSV7EAvD3xgnbIuB/IMG_20150810_231613.jpg">https://dl.pushbulletusercontent.com/q5KoC71ynK1lycjdmSV7EAvD3xgnbIuB/IMG_20150810_231613.jpg</a>
What can we do about these?
I've been scanning lots of these into a git repository that gets backed up to
Ratchet. Some of them are done, but many more remain.
In any case, I've kept all the dead tree copies around because I'm of the
paranoid type who still isn't really sure what would happen if the paper
originals were eaten and the keys to the repo were lost.
Whats a good security approach to keeping such a repository around forever and
with a very low chance of all this stuff getting leaked out to the 'net? Some
of these things are Important Noisebridge Trees like bank documents, old
leases, legal things, etc. Important in the sense that Noisebridge is a 501c3
corporation and that'd be nice to keep around for a bit longer.
Any noisebridgers have a good suggestion? I'm looking at this and it seems
like it'd be usable:
<a class="moz-txt-link-freetext" href="https://github.com/StackExchange/blackbox">https://github.com/StackExchange/blackbox</a></pre>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Noisebridge-discuss mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Noisebridge-discuss@lists.noisebridge.net">Noisebridge-discuss@lists.noisebridge.net</a>
<a class="moz-txt-link-freetext" href="https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss">https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss</a>
</pre>
</blockquote>
<br>
</body>
</html>