Ask HN: How do I secure a personal journal?
Now, I'm just another run-of-the-mill mid 20s programmers, I'm not on any list that I'm aware of. And you can never say anything about life, but I'm not particularly intend to join any list of a three digits agency, either ;).
That said, I'm not sure if my paranoid is grounded or not. My answers to the two basic questions on threat modeling: "What's the likelihood of a threat against the journal would be?" and "What would happen if the threat actually happen" would be "I don't know" and "I hope I'm old enough". On one hand, I've no reason to believe that my info would be of anyone interest. On the other hand, I'd rather not find out whether anyone does.
I've been thinking about it for a bit, and the most secure way seems to be getting a secondary machine without network access, and just write the journal there. This approach has several problems:
- Collecting data: I'd have to actually transfer data I got from another machine to this one, via some air gap methods. This seems way overboard to me.
- Backup: regular backup won't be a viable options, especially for redundancy in term of geography.
All in all, I'd prefer to have some security/encryption scheme that I can use on a normal machine. Of course, the trade off will be security. I'm willing to accept that if I managed to be a named target of a 3 letter agency on a 20 person lists, they will successfully mount an attack for the data (I wouldn't be able to stop them, either way). But beyond that, I'd like the data to be as secure as possible. How would I accomplish such objective?
65 comments
[ 3.6 ms ] story [ 136 ms ] threadI know it's offtopic, but wanted to mention in case it helps someone.
[1]: http://www.reddit.com/r/fountainpens
- Lamy Safari/Vista
- Kaweco Sport
- Pilot Metropolitan
- Parker Vector
- Tesco's if you can find them; $0.5 but write fairly well
The interesting part about fountain pens is customization: you can choose between different nib widths, type of paper and quality of ink. After some time you will notice significant difference if you go back to ballpoint/gel pens.
If you're interested, check out Fountain Pen Network:
http://www.fountainpennetwork.com/forum/
They also have some of the best nibs for the price point (so good there's a number of people who have developed and published hacks on how to refill them).
http://www.amazon.com/Pilot-Varsity-Disposable-Fountain-Medi...
I got into re-learning to write a bit over a year ago. I was a clumsy left hander with great keyboard skills but terrible handwriting. Take a look at IAMPETH, they have tons of material on vintage writing styles. I even followed Spencerian methods from the the nineteenth century.
Yet for me, a fountain pen is too much impedance. That much ceremony gets in my way. Today, I use a particular model/brand of gel pen. The ink is blue. The milestone of running another one dry feels good; throwing the husk away less so. But replacement guts don't exist. Ultimately, my journals are equivalently disposable once full but for the meaning that I attach.
Despite their costing more than I think they should, I go to the store and purchase four packs of replacement pens. It's a ritual that requires me to give myself permission to do something so frivolous as writing. Spending money on it reinforces the point.
The purpose is not the pens. It is the writing. Technology facilitates it. I have a journal for which I purchased a particular instrument. The journal has a protective leather cover. It's too sacred. What happens when I fill it up?I use Moleskine journals. Hard bound. Ruled in blue. They cost too much. Tools of ceremony are present, implemented without frills. The elastic band pulled aside, intimate contents exposed. The important page at the end of last use, indexed by the ribbon.
Journals fill quickly when writing regularly. The ending of one is a rite rife with anticipation of beginning the filling anew.
There's a couple up-and-coming replacements though, which hopefully will be usable soon.
When you want to write or read the journal, provide the passphrase and mount it. When you don't, unmount it. You can do this automatically on boot if you're willing to accept the possibility of being tackled by an FBI agent then having your work journal for Silk Road read out in open court.
A second option: use full-disk encryption (same "vulnerable to a football tackle" problem). For backups, just use Tarsnap.
Google translate is very poor for Irish and since only ~250,000 in the world speak/read it well enough to translate and 90% of those people are on an island it works quite well.
"the process of encoding messages or information in such a way that only authorized parties can read it."
It may not be a secure form of encryption, but it is a form of encryption.
It would be pretty effective against the random passer by, and standard law enforcement would probably not be able to identify the language.
Plus, virtually any encryption a user has can be broken given time and processing power. By hand writing everything in another obscure language, without many native speakers you gain plausible deniability. If he/she manages to get on a list, he/she could claim issues with translation (either by him/her or by the translator).
[1] NEWS: http://www.tg4.ie/
[2] Rosetta Stone: http://www.rosettastone.com/learn-irish
[3] Folclóir Póca (pocket dictionary)
[4] Learning Irish by Mícheál ó Siadhail
Now they also have it on Duolingo
It won't secure you against everything, but it'll certainly secure against the casual observer. It's also probably better than the no-longer-supported Truecrypt.
My passwords live in the same container too.
http://marinersoftware.com/products/macjournal/
It took me quite a while to come to this conclusion personally. I lean very heavily toward electronic solutions to things.
If you want it to be searchable, write relevant notes in the margins and/or use the little colored sticky "flags" that stick out a bit to categorize entries.
Unfortunately, I want to make a journal in the vein of https://news.ycombinator.com/item?id=2918935 -- partly a reason why I rejected paper (limit to word, and probably not suitable for the amount of data that is being stored).
There are tons of ways to do it that meet your threat model.
You can just use a linux machine with disk encryption.. it happens by magic if you click the option for 'encrypt my home directory' when installing ubuntu.
You can use bitlocker (also built in) in windows.
If you happen to use VIM, it has built in encryption as well that is extremely simple to use.
Other options would be something like pgp, or pen and paper and a lockbox.
In recent versions of Office (from 2007 onwards, using the DOCX format), by default it uses AES in CBC mode, with an SHA-1 based key derivation function [1].
So with a sufficiently complex password your documents will be resistant to cracking. But of course you are still vulnerable to keyloggers and the like.
[1] https://msdn.microsoft.com/en-us/library/office/cc313071(v=o...
In fact, this has been an excellent exercise to cultivate writing and I'd like to publish some of these things one day, in longer and polished form.
I'd suggest to just start your journal, this sounds like "premature optimization".
However, the first word that comes to me for this behavior is... hoarding, who would ever look at all of this stuff?
Not judging or anything, but I feel that all this effort directed backwards (at the past) would have so much more impact if pointed forwards (making new things).
Since I started mine, every december 31st I read my journal for the past year and I feel like I am writing too much stuff already.
This is pushing me to make a conscious effort to recognize, in 'real time', what is important and what isn't, I find that to be a great exercise in mindfullness.
[0]: http://www.passwordstore.org/
A Tails (The AmnesIac Live oS) USB stick with a small persistent storage drive. The OS is read-only, the persistent drive is encrypted at rest, and it provides a number of utilities for viewing and creating different media files. The entire network stack runs through Tor as well, so your browsing habits while building your journal will be protected (and you can safely store hyperlinks to items without fear of them revealing your interest).
The minor tackling protection comes from Tails behavior when the media containing it is removed - it immediately unmount and overwrites the OS memory.
As for the journaling tool itself, something along the lines of a disk based wiki might work well (i.e. Tiddlywiki).
You have to have a totally separate machine that:
1) you never ever connect to the internet, even for updates or installation of a cooler writing app
2) you never ever move data in or out - disable all data ports, especially USB and WiFi, at the very least in BIOS, preferably by physically disconnecting them inside.
3) you need to be able to inspect and modify that machine yourself (see pt 2), so pick something serviceable, like a ThinkPad (definitely not a Mac or anything unibody)
4) use an open-source operating system
5) obviously use full encryption - you'll get plenty of others' advice on that; use strong BIOS password both for boot and config
6) you probably don't want to spend a lot of money on a machine that's just a diary, so get a used ThinkPad. Depending on your preferred size, an X or T family. The _20 series is the last with a proper keyboard. So my suggestions would be X220, T420 or T520. (Or something older, if you don't care that much about performance, which is reasonable for what's essentially a typewriter. I guess you could get a working T400 (last of core2duos) for like $150.)
7) you make an exception for the "no data in or out" rule at the very beginning when you set up the OS and all needed apps - since there's no data (diary entries) to lose yet
At the very least, the need for backup will require a data transfer between machine.
Generate a keypair on an airgapped machine, keep the private part on a secure external medium (eg. CF Card in a bank safe).
Have the public key on your normal machine, write your journal in normal text files (use a ramfs if you worry about it being restored by forensics) and encrypt against the public journal key. Decryption is only possible with the private part, the public part can even be, well, public. :)
It's a command line journal and has inbuilt (optional) encryption [2]. I keep my encrypted journal file in my ~/Dropbox folder so that it syncs between my different machines. It's so simple, yet it meets all of my needs perfectly. It also doesn't rely on any proprietary software and will be just as readable in 50 years.
[1] - http://maebert.github.io/jrnl
[2] - http://maebert.github.io/jrnl/encryption.html
Also, any level of law enforcement can probably get their hand on a copy of emails ...