List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
On Thu, 2008-02-28 at 15:19 -0500, Mansour Moufid wrote:
> On Thu, Feb 28, 2008 at 1:29 PM, Florian Philipp
> <lists@...> wrote:
> > One last question for everyone who has read this rather long mail (thank
> > you, btw): What exactly is benbi in aes-lrw-benbi:sha256 and what should
> > I choose for XTS? The kernel description states plain but essiv and
> > benbi work as well.
> benbi is an IV generation algorithm. If you look at the dm-crypt
> sources , benbi stands for "big-endian 'narrow block'-count" (not
> sure where they got the `i' from...). There's also one called bewbi,
> which I thought was entertaining.
> Mansour Moufid
>  http://www.cs.fsu.edu/~baker/devices/lxr/http/source/linux/drivers/md/dm-crypt.c#L110
So, am I right to believe that essiv is the best choice and benbi just
some kind of special requirement for lrw or should I stick with what's
recommended (although without reasons given for xts), e.g. cbc-essiv,
signature.asc (This is a digitally signed message part)