Thank You for Your time and answer, Mike:
> Let us know what the product was, and maybe we can work from there.
All right, I got the point. Though still an idea remains - a "read
pass" can be encrypted each time the host boots - depending on
hardware - then check w/ the one saved in OS. :)
I do
(Sorry if this comes late, but I had trouble getting through the list's
spam filters.)
Sthu Deus:
>
> Can I make separate passwords (if one is necessary to boot) - for
> accessing the FS and for just booting?
It appears you don't really understand how filesystem encryption
(usually) works. Let m
Thank You for Your time and answer, Wolodja:
> http://smcv.pseudorandom.co.uk/2008/09/cryptroot/
> http://linuxgazette.net/140/kapil.html
I will take a look at it.
> I followed the second approach and am very happy with it. If these
> approaches do not cover your usecase you might want to desrib
Thank You for Your time and answer, Eduardo:
> I still haven't fully understood exactly what you want. The idea I
> have is essentially impossible, but maybe if you explain it in more
> detail a viable option can be presented.
Please, look at my another post - answer to Mike.
--
To UNSUBSC
On Sun, Nov 28, 2010 at 11:34:16PM +0700, Sthu Deus wrote:
> Good day.
>
> Can You please help me to direct to some documentation or project in
> Debian or explain how to make the following:
>
> after a system has been installed and configured - to make it encrypted
> so that it will make impossi
Sthu Deus wrote:
> Is it possible to save the encryption pass in a loader - like grub2
> or some other program standing somewhere in the boot process?
Not in the way I'm imagining it. You want each *whole partition* on
the disk to be encrypted as stored on the disk, which means that you
need to d
Thank You for Your time and answer, Mike:
> As Eduardo wrote, "running" and "reading" are the same thing here.
> Entering the password makes decryption by the OS possible. Without
> the password, the OS can't even read the partition, so it can't run.
> And once you have the password to decrypt a
Thank You for Your time and answer, Eduardo:
> > Can the passwords (to run and to read) be different?
>
> No. "Running" requires reading.
Can I place the password for lunching inside the FS? - For booting
purposes? The FS being encrypted itself?
> > - So that one
> > person can all the admini
Sthu Deus wrote:
>> Once the disk is encrypted, you'll at least need to enter a
>> password as a key to decrypt it when it powers on.
>
> Can the passwords (to run and to read) be different? - So that one
> person can all the administration - that is the system is totally open
> to him while anoth
On Sun, Nov 28, 2010 at 23:34 +0700, Sthu Deus wrote:
> after a system has been installed and configured - to make it
> encrypted so that it will make impossible (or almost so) to read its
> files, configuration, etc (even though the HDD be removed from the
> host and connected to another running O
On Seg, 29 Nov 2010, Sthu Deus wrote:
Sorry, didn't got an idea: Yo say that I can make encrypted right from
the box (Debian) - then why do I need to have a live CD and then adhust
my FS settings?
You can create encrypted filesystems, but you cannot encrypt on the
fly one that already exists.
On Seg, 29 Nov 2010, Sthu Deus wrote:
Sounds like you're asking for the impossible. Once the disk is
encrypted, you'll at least need to enter a password as a key to
decrypt it when it powers on.
Can the passwords (to run and to read) be different?
No. "Running" requires reading.
- So that
Thank You for Your time and answer, Eduardo:
> It would have been easier to set up encryption while the system is
> being installed. The debian installer can do that for you, as a
> matter of fact.
>
> Afterwards, I'd recommend booting a live distro of your choice,
> backing up the data, creating
Thank You for Your time and answer, Mike:
> Sounds like you're asking for the impossible. Once the disk is
> encrypted, you'll at least need to enter a password as a key to
> decrypt it when it powers on.
Can the passwords (to run and to read) be different? - So that one
person can all the admin
Sounds like you're asking for the impossible. Once the disk is
encrypted, you'll at least need to enter a password as a key to
decrypt it when it powers on.
Would it solve your problem to make the machine diskless, boot it over
the network?
Sthu Deus wrote:
> to make it encrypted
> yet that it w
On 11/28/2010 02:34 PM, Sthu Deus wrote:
Good day.
Can You please help me to direct to some documentation or project in
Debian or explain how to make the following:
after a system has been installed and configured - to make it encrypted
so that it will make impossible (or almost so) to read it
16 matches
Mail list logo
