1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
Neil Bothwick wrote: |
5 |
> |
6 |
> Use cryptsetup-luks to set up encrypted swap partitions and |
7 |
> use /etc/conf.d/cryptfs to manage it. If you use a different key for |
8 |
> swap, there's no risk of it unlocking the wrong partition and formatting |
9 |
> it. |
10 |
> |
11 |
> |
12 |
|
13 |
Hmm - not ideal if you store the key in a config file. I just create a |
14 |
random key on each boot and it doesn't get recorded anywhere. As a |
15 |
result it isn't possible to tell if a given partition is a swap or |
16 |
random data upon the next boot. I could write something to the |
17 |
partition upon shutdown, but it won't help on an unclean boot and I'd |
18 |
rather not have to manually intervene anytime that happens... |
19 |
|
20 |
But thanks for the tip on the package. I might still look at it. And |
21 |
thanks to the other post about udevinfo... |
22 |
-----BEGIN PGP SIGNATURE----- |
23 |
Version: GnuPG v1.4.7 (GNU/Linux) |
24 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
25 |
|
26 |
iD8DBQFGoQ8IG4/rWKZmVWkRArDsAJkBEzsRNUEh48u3wtqVmKXkIod9YwCgsb8H |
27 |
Ud49d/Ft2ynjh+DZlNp2toM= |
28 |
=zo74 |
29 |
-----END PGP SIGNATURE----- |