Alexander Skwar wrote:
Is it possible to encrypt the complete block device with loop-AES?
Or does it only encrypt a file that's afterwards loop mounted?
Yes. Everything that can be encrypted with dm-crypt can also be
encrypted with loop-AES.
For example, my laptop has two hard drives.
Alle 13:53, domenica 31 luglio 2005, Alexander Skwar ha scritto:
>
> How?
>
> /bin/crypsetup < file-with-passphrase
>
> Where does the attacker see the passphrase?
>
> Oh. You took my example way too literally. *echo*ing the password
> is an extremely bad idea. You're of course right. But in realit
Richard Fish schrieb:
> Alexander Skwar wrote:
>
>>Richard Fish schrieb:
>>
>>
>>>Pupeno wrote:
>>>
>>>
>>>
>I use the dm-crypt from the kernel
>
>
>
>
I've read that it is unsecure and I also read that it is not yet vory well
suported.
I'm not sure if anyone has covered this, but the following pdf was
very useful for me to encrypt my home dir:
www.flyn.org/docs/ehd.pdf
The interesting part was using openssl to encrypt the key and then
using your account's linux password to encrypt the openssl file. This
way, you can change you
Alexander Skwar wrote:
Richard Fish schrieb:
So dm-crypt today provides the same level of security as loop-AES in
single key mode, which as I already stated in a previous email, should
be sufficient for most people. However, you did ask how it was
insecure! :-)
Yep, I did ask a
Alexander Skwar wrote:
Richard Fish schrieb:
Pupeno wrote:
I use the dm-crypt from the kernel
I've read that it is unsecure and I also read that it is not yet vory well
suported.
Dm-crypt is fairly well supported, since it is in the kernel, but I find
it t
Richard Fish schrieb:
> So dm-crypt today provides the same level of security as loop-AES in
> single key mode, which as I already stated in a previous email, should
> be sufficient for most people. However, you did ask how it was
> insecure! :-)
Yep, I did ask and I wish to thank you for yo
Alexander Skwar wrote:
Pupeno schrieb:
On Wednesday 27 July 2005 20:54, Luigi Pinna wrote:
I use the dm-crypt from the kernel
I've read that it is unsecure
Where? And how is it insecure?
Some history:
The original crypto-loop from 2.4 is very susceptible t
Pupeno schrieb:
> On Thursday 28 July 2005 02:54, Richard Fish wrote:
>> Pupeno wrote:
>> >>I use the dm-crypt from the kernel
>> >
>> >I've read that it is unsecure and I also read that it is not yet vory well
>> >suported.
>>
>> Dm-crypt is fairly well supported, since it is in the kernel, bu
Richard Fish schrieb:
> Pupeno wrote:
>
>>>I use the dm-crypt from the kernel
>>>
>>>
>>I've read that it is unsecure and I also read that it is not yet vory well
>>suported.
>>
>>
>
> Dm-crypt is fairly well supported, since it is in the kernel, but I find
> it to be harder to setup
Pupeno schrieb:
> On Wednesday 27 July 2005 20:54, Luigi Pinna wrote:
>> I use the dm-crypt from the kernel
> I've read that it is unsecure
Where? And how is it insecure?
> Beyond that, encripting with a key is much better than doing that with a
> passphrase because the passphrase can be c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> As I said in another message, what I read is that the userland tools weren't
> supporting dm-crypt propersy. Probably I've read something that was outdated.
An old bug I believe. ATM there is nothing I know of that supports a bug
or flaw in any way
Pupeno wrote:
But now that I think of it, I don't need that much security (Am I the only one
that when reading about security gets paranoid ?).
Nope! ;-)
-Richard
--
gentoo-user@gentoo.org mailing list
On Friday 29 July 2005 04:13, Ralph Slooten wrote:
> Pupeno wrote:
> >>I use the dm-crypt from the kernel
> >
> > I've read that it is unsecure and I also read that it is not yet vory
> > well suported.
>
> You read wrong. Dm-crypt *is* the encryption technique now used in the
> kernel, and it
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Pupeno wrote:
>>I use the dm-crypt from the kernel
>
> I've read that it is unsecure and I also read that it is not yet vory well
> suported.
You read wrong. Dm-crypt *is* the encryption technique now used in the
kernel, and it wasn't chosen
Pupeno wrote:
On Thursday 28 July 2005 02:54, Richard Fish wrote:
Pupeno wrote:
I use the dm-crypt from the kernel
I've read that it is unsecure and I also read that it is not yet vory well
suported.
Dm-crypt is fairly well supported, since it is in the kernel, bu
On Thursday 28 July 2005 02:54, Richard Fish wrote:
> Pupeno wrote:
> >>I use the dm-crypt from the kernel
> >
> >I've read that it is unsecure and I also read that it is not yet vory well
> >suported.
>
> Dm-crypt is fairly well supported, since it is in the kernel, but I find
> it to be harde
Pupeno wrote:
I use the dm-crypt from the kernel
I've read that it is unsecure and I also read that it is not yet vory well
suported.
Dm-crypt is fairly well supported, since it is in the kernel, but I find
it to be harder to setup and less 'flexible' than loop-AES (the changing
Pupeno wrote:
Hello,
I want to have the /home of my laptop encripted, with an external key (in a CD
or floppy, until I get an usb pain drive), specially to be able to change the
passphrase easily and have various medias with different passphrases and the
same key (so, my wife can uses her own
On Wednesday 27 July 2005 20:54, Luigi Pinna wrote:
> Alle 01:18, giovedì 28 luglio 2005, Pupeno ha scritto:
> > Hello,
> > I want to have the /home of my laptop encripted, with an external key
> > (in a CD or floppy, until I get an usb pain drive), specially to be
> > able to change the passphrase
On Wednesday 27 July 2005 07:54 pm, Luigi Pinna wrote:
> Alle 01:18, giovedì 28 luglio 2005, Pupeno ha scritto:
> > Hello,
> > I want to have the /home of my laptop encripted, with an external key
> > (in a CD or floppy, until I get an usb pain drive), specially to be
> > able to change the passphr
Alle 01:18, giovedì 28 luglio 2005, Pupeno ha scritto:
> Hello,
> I want to have the /home of my laptop encripted, with an external key
> (in a CD or floppy, until I get an usb pain drive), specially to be
> able to change the passphrase easily and have various medias with
> different passphrases a
Hello,
I want to have the /home of my laptop encripted, with an external key (in a CD
or floppy, until I get an usb pain drive), specially to be able to change the
passphrase easily and have various medias with different passphrases and the
same key (so, my wife can uses her own passphrase), is
23 matches
Mail list logo
