Hacker News new | ask | show | jobs
by idorosen 1728 days ago
My only regret about this device is that it seems to lack full disk encryption on the device or any meaningful privacy (encryption) for documents stored in reMarkable Cloud...which is all of them if you want to use features like Screen Share (f.k.a. LiveView). ReMarkable should not be able to access contents of docs backed up from my device without my password or recovery key, but AFAICT, there is no such protection whatsoever against internal threats.

Other than that, I love my RM2, just can’t use it for as much as I’d like because of the above.
3 comments
hvocode 1728 days ago
I’m in the same boat. Due to security restrictions of my employer I can’t use cloud services to store work related stuff. I was really bummed when I discovered that a lot of the interesting features of my RM2 require their cloud service. I’ve dug through the GitHub repos of RM2 hacks and open source tools that are available, but it still feels like I’m missing out.
link
jcun4128 1728 days ago
Can you not just use it as is? I have not connected to a WiFi yet and you can sync to your own cloud.

I guess you do need a way to get the docs on the device. Their sync process is weird.

link
greenhathacker 1728 days ago
I've never connected mine to WiFi, but that's because it does all I need through ssh.
link
jcun4128 1728 days ago
Are you able to ssh and move files by something like sftp or no? ssh by wire? Was curious what the file format is of each note.
link
greenhathacker 1728 days ago
Yep! When you plug it in to your machine through a USB-C cable, it attaches as an ethernet device and answers to `ssh root@10.11.99.1`. You can also activate an http UI that you can then use to upload files with `curl --form "file=@\"$1\"" "http://10.11.99.1/upload"`.

If you're curious about the file format, have a look at https://remarkablewiki.com/tech/filesystem#user_data_directo...

link
jcun4128 1728 days ago
thanks a lot for the info
link
svat 1728 days ago
I have a rM2 that I've never connected to their reMarkable Cloud and I'm pretty happy with it; you can get the screen-sharing via other software. (Bunch of options here: https://github.com/reHackable/awesome-reMarkable#screen-shar... )
link
Eeems 1728 days ago
gocryptfs is available in toltec[0]. So you could in theory add full device encryption behind a password on startup. I know there has been some work on creating a UI for this kind of setup, but I don't know if anyone has actually released one yet.

0. https://toltec-dev.org/stable/

link
mintplant 1728 days ago
The UI stuff is here: https://blog.redteam-pentesting.de/2021/remarkable-encryptio...
link
Eeems 1728 days ago
That's one of the UI solutions You can also find the source here: https://github.com/RedTeamPentesting/remarkable-encryption.

There is also https://github.com/plan5/remarvin

link