Stef Bon schreef:
Carlos Martín wrote:
On 15/09/06, John Lockman <[EMAIL PROTECTED]> wrote:
However, this does make it extremely good for storing sensitive data
before encryption.
Not really. tmpfs may be pushed to swap space, where it could be
recovered if the attacker has enough interest. Try running gnupg
withoug suid root. It will warn you that it won't be able to lock the
memory to RAM, and therefore may be recoverable. This is the same
thing.
Ok, I see.
But do you now an other sollution for storing important data which only
have
to be there for one session in an temporary filesystem ( = not on harddisk)
?
You could try not ever writing to a swap file, or swap partition, but
you could also follow this hint to encrypt the swap space
entirely/constantly.
http://www.linuxfromscratch.org/hints/downloads/files/eswap.txt
Cheers, Warren
_________________________________________________________________
All-in-one security and maintenance for your PC. Get a free 90-day trial!
http://www.windowsonecare.com/trial.aspx?sc_cid=msn_hotmail
--
http://linuxfromscratch.org/mailman/listinfo/lfs-chat
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page
