1 |
Richard Fish schrieb: |
2 |
> Pupeno wrote: |
3 |
> |
4 |
>>>I use the dm-crypt from the kernel.... |
5 |
>>> |
6 |
>>> |
7 |
>>I've read that it is unsecure and I also read that it is not yet vory well |
8 |
>>suported. |
9 |
>> |
10 |
>> |
11 |
> |
12 |
> Dm-crypt is fairly well supported, since it is in the kernel, but I find |
13 |
> it to be harder to setup |
14 |
|
15 |
hard to setup? How? What's hard about it? |
16 |
|
17 |
You just encrypt the block device and create an fs on it. |
18 |
|
19 |
/sbin/lvcreate -nToBeEnc -L5g sys \ |
20 |
&& echo 'sekret' | /bin/cryptsetup create Crypted /dev/sys/ToBeEnc \ |
21 |
&& mkfs -t reiser4 /dev/mapper/Crypted \ |
22 |
&& mount /dev/mapper/Crypted /some/where |
23 |
|
24 |
Obviously, the lvcreate and mkfs steps are just a one time step :) |
25 |
|
26 |
> and less 'flexible' than loop-AES (the changing |
27 |
> passphrase thing, for example). |
28 |
|
29 |
Any other example? |
30 |
|
31 |
> Well, technically, anything can be cracked given enough time and |
32 |
> computing power. |
33 |
|
34 |
Yep. |
35 |
|
36 |
Alexander Skwar |
37 |
-- |
38 |
Men of peace usually are [brave]. |
39 |
-- Spock, "The Savage Curtain", stardate 5906.5 |
40 |
-- |
41 |
gentoo-user@g.o mailing list |