Jump to content

Sooneung

Member
  • Posts

    18
  • Joined

  • Last visited

Reputation Activity

  1. Like
    Sooneung got a reaction from moatmote in I think I have (almost) complete explaination for the Samsung's System Files thing.   
    I read about the recent Galaxy's System Files article, and I wanted to find the reason behind this chaos.
    I imported all partition information onto my PC and did some calculation. Since I'm no expert at this, some of info may not be correct or represent all devices.
     
    My Conclusion in short:
    As many of you guys have expected/guessed, it's just the storage size unit difference thing.
    Android (and its root Linux) calculates storage and files in binary(MiB, GiB) but consumers are used to decimal units(MB, GB), so Samsung just decided to calculated in binary then add dummy numbers to hide the difference. I mean if they didn't do that, customers would be angry about smaller storage and complain about it wouldn't they? Even if Samsung and their engineers try their best to explain it, they won't be able to convince them.
    On my calculation, the whole System Partition"S" are total 10.94GB. This includes system image itself, modem, hw specific libraries, carrier/country specific apps/configs, hw configs etc. Also, I think there are more hidden partitions for KNOX, other more secure things or critical system files. (This sum of partition sizes didn't add up to exactly 256GB. It's missing 2.43GB, but I bet Samsung cheaped out on that. I think it's hidden by KNOX or something.)
    Here is the list:
    - System Partitions: 10.94GB
    - Missing Bytes: 2.43GB
    - Unit Difference: 17.41
    > Total System Files: 30.79GB (Including missing bytes)
    > Reported System Files: 34.46GB

     
    Now you may say that there's still 3.57GB left. I think this one's reserved for system caches and safe buffer. My guess is that Samsung wanted to leave some headrooms so that even if the customer fills up the storage to 100% device can still function, alerting user to delete some files, not locking itself up. OR, it's just cache/tmp files or combination of two. This theory is also somewhat backed up with the fact that actuall /data's usage is 4.74GB bigger than the Samsung's reported used space. Also, Samsung's Reported System Files size changes from time to time. Not because I updated the system. I left the device, calculating this storage thing, but it decided to change the size by itself. If the System partiton ONLY contains the Read-Only ROM, there's no reason for the value to be changed. (Fun fact: /system is ext4 RO, which means read-only. Other system partitions are the same too.) This backs the "Cache/Buffer" theory.
    I haven't tested this by filling up my device literally 100%, so this is just an assumption.
     
    Yes, raw system partitions are 10.94GB (not including those hidden, missing partitions) ARE HUGE for mobile OS. Just like Linus mensioned on WAN show, pixel devices takes up only about 6gigs and even has dual OS partition to seamless update/fallback OS. But on the other side, modern windows takes up about 16-20 gig on fresh install (depending on drivers) and skyrockets if you install pdf viewer, office, etc. I think that applies to macOS too. (Let's not talk about linux. They vary greatly. Though, I think I remember fresh ubuntu being under 10gig. don't quote me on that) Samsung's OS is full of features. Samsung even supports literally 'modding' your device to your likings with Good-Lock app. (Go try it on the Galaxy
     Store if you haven't. You have been wasting your Galaxy if you didn't use it.) They support Smart-Things or Find your device without installing a seperate app. Whether you like it or not, they have Bixby and Bixby routines included with your phone. You can't find these features on any other phones. At least not with this level of customization, build quality, and features.
    There's no denying on that Samsung has a lot of bloat preinstalled and the fact that system image is HUGE. But In my opinion, this is justifiable. It just needs a little bit of diet.
     
    Here is my spreadsheet:
    https://docs.google.com/spreadsheets/d/14AlFARcdSbKqaMk8-ntRDCRTq8h7_6HH/edit?usp=sharing&ouid=100210223171289014815&rtpof=true&sd=true
    Do note that my calculations are based on Korean varient of S21 (SM-G991N)
     
    Note: 'changes eveytime' is not actually true. It actually changes 'time to time' but still I saw it change without any reasons. (no reboot, no update etc.)
  2. Agree
    Sooneung got a reaction from kirashi in Do you guys prefer backdoor(s) on encryption feature?   
    This is what I think. Key management should be the only way to controll complexness of security or recovery process. No backdoors should be enabled. We can't really do much about unintended backdoors (or securoty holes). Instead, we should take a deep look of codes and improve security as fast as possible.
  3. Funny
    Sooneung got a reaction from kirashi in Do you guys prefer backdoor(s) on encryption feature?   
    Whoa thats long. Perhaps I really am being too serious about this thing. Maybe I really overlooked the advantages of backdoors.
  4. Agree
    Sooneung reacted to bowrilla in Do you guys prefer backdoor(s) on encryption feature?   
    Every backdoor is a potential leak. If the government can make use of it so can attackers. There's no universal key that only the government can have and no one else. That's not possible. The moment you build in a backdoor your security is gone and your encryption is obsolete. The more people you have to trust the worse. That's why end to end encryption is the only secure way of communication. Only having encryption between you and the server isn't worth a dime. The company can get hacked assuming they're not already selling your information. 
  5. Like
    Sooneung reacted to Mira Yurizaki in Do you guys prefer backdoor(s) on encryption feature?   
    The main problem with backdoors is the moment an attacker finds out about it, you're no longer safe.
  6. Informative
    Sooneung reacted to captain_to_fire in Do you guys prefer backdoor(s) on encryption feature?   
    Backdoors with the intention to bring a criminal to justice is a good thing. However, nothing exists to prevent its abuse especially when the person in power has an authoritarian agenda. So until then, I’d say no to all forms of deliberate encryption backdoors and I wish all tech companies say??to government officials demanding to spy on a person or even a country. 
     
    Law abiding citizens and criminals breathe the same air, so is encryption. 
     
  7. Agree
    Sooneung reacted to themctipers in Do you guys prefer backdoor(s) on encryption feature?   
    a backdoor that I create inside what would be a completely secure encryption scheme? Sure. as long as only I can create them and it is 100% perfect at evading potential attacks
     
    else, no. I would rather my encryption all be done right and if I forget the password to them, it's gone forever and there is no chance in recovering my data except for taking years to brute force the encryption 
    For me, encryption is only done right if you forget it, it's gone forever. 
  8. Agree
    Sooneung got a reaction from TopHatProductions115 in Do you guys prefer backdoor(s) on encryption feature?   
    Yes, the spare keys are the recovery keys. This is something like a recovery key you get when you setup bitlocker or 2factor auth on google. This key HAS to exist. But the thing is that black smith's tools are some software from company, which can leak to public or be abused by one of the employees. Think of an samsung's odin, which is intended to be used in service centers.
     
    Many of us uses iPhone because we believe iPhone has one of the most secure phones in the world, where as android phone's data can be leaked. We use truecrypt(or fork of truecrypt) because we believe even the nsa can't crack them. Sure, there might be an hidden backdoors we never knew, but we use those because we feel safe.
     
    Sure, we have to have some sort of recovery options because we humans are not perfect. But the thing is process of recoverying keys shouldn't be easy. You gave a example of a blacksmith breaking into security. The problem is that ordinary keys are easy to break into. We change our lockers to digital ones because of this. The process should involve more tight verification of user that's trying to use backdoor. We can't just unlock the thing with a tool without verification. That is no longer secure. For example, when you forget your google password, they ask you to enter your prev passwords, birthdate, what you have done wuth the account etc to ensure you are you before they reset your password. Same for the facebook account. The process of recoverying sould be very tight.
     
    When we use bitlocker(one of the most common software we use), they provide a recovery key and they force you to save or print the key. They warn you if you loose it, your data are basically .... gone for good. But we don't have any other options other than recovery key if you loose your password. I believe there's a reason for that. More spare keys, more vulnerable your data are. When you add a backdoor(s), your giving the genius hackers around the world more headrooms to crack the password. But what he said(on the chat session I mensioned on original article) is that you could easily recovery your password fron service center with special tool. I don't know what the mechanisms are, but that frightens me. If it is something like some recovery key or matching up hints you gave to encryption software earlier, pew what a relief. If thats not the case, than the encryption is basically useless because almost anyone on the company can access the tools and can even leak the software or informations of the tools.
     
    This is my thoughts. Maybe I'm being too sensitive. Maybe it's because I'm into security things. Maybe ordinary endusers really need an easy recovery options. Maybe they don't need a cutring edge security. But this is what I think. (Sorry for bad English if it disturbed you.)
  9. Funny
    Sooneung got a reaction from TopHatProductions115 in Do you guys prefer backdoor(s) on encryption feature?   
    Whoa thats long. Perhaps I really am being too serious about this thing. Maybe I really overlooked the advantages of backdoors.
  10. Like
    Sooneung got a reaction from Jtalk4456 in What system does Linus use for his server?   
    I wonder what operating system does linus use for his studio server, and what protocol he uses to share disks. I know he uses ZFS filesystem and CentOS on one of his racks, but I see Windows UI on monitor (the one in server room)
    Also I tried ftp to setup network disk, but there was security, permission issues and.. I just couldn't use it as "drive." I can't save or open documents right away niether saving directly. What kind of protocol can perform what i want? Smb? (I don't think it's smb though.. I saw linus directly accessing files at home with smartphone. I believe smb is for local sharing...)
    Sorry if this topic is already answered.
     
    Btw this is my first post at this forum. Hello!
  11. Like
    Sooneung got a reaction from SLCH in What system does Linus use for his server?   
    I wonder what operating system does linus use for his studio server, and what protocol he uses to share disks. I know he uses ZFS filesystem and CentOS on one of his racks, but I see Windows UI on monitor (the one in server room)
    Also I tried ftp to setup network disk, but there was security, permission issues and.. I just couldn't use it as "drive." I can't save or open documents right away niether saving directly. What kind of protocol can perform what i want? Smb? (I don't think it's smb though.. I saw linus directly accessing files at home with smartphone. I believe smb is for local sharing...)
    Sorry if this topic is already answered.
     
    Btw this is my first post at this forum. Hello!
  12. Informative
    Sooneung reacted to RZeroX in What system does Linus use for his server?   
    With Undraid you can setup VMs.
  13. Like
    Sooneung reacted to LinusTech in What system does Linus use for his server?   
    The high speed nvme storage server is using Windows Storage Spaces
     
    So is its near realtime backup
     
    The vault is running cluster over zfs on centos
     
    My server is running unraid with a couple of VMs and a plex docker container. 
     
    Per the above comment I'm probably not doing it right, but it works for me
×