| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
Neil Bothwick wrote: |
| 5 |
> |
| 6 |
> Use cryptsetup-luks to set up encrypted swap partitions and |
| 7 |
> use /etc/conf.d/cryptfs to manage it. If you use a different key for |
| 8 |
> swap, there's no risk of it unlocking the wrong partition and formatting |
| 9 |
> it. |
| 10 |
> |
| 11 |
> |
| 12 |
|
| 13 |
Hmm - not ideal if you store the key in a config file. I just create a |
| 14 |
random key on each boot and it doesn't get recorded anywhere. As a |
| 15 |
result it isn't possible to tell if a given partition is a swap or |
| 16 |
random data upon the next boot. I could write something to the |
| 17 |
partition upon shutdown, but it won't help on an unclean boot and I'd |
| 18 |
rather not have to manually intervene anytime that happens... |
| 19 |
|
| 20 |
But thanks for the tip on the package. I might still look at it. And |
| 21 |
thanks to the other post about udevinfo... |
| 22 |
-----BEGIN PGP SIGNATURE----- |
| 23 |
Version: GnuPG v1.4.7 (GNU/Linux) |
| 24 |
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org |
| 25 |
|
| 26 |
iD8DBQFGoQ8IG4/rWKZmVWkRArDsAJkBEzsRNUEh48u3wtqVmKXkIod9YwCgsb8H |
| 27 |
Ud49d/Ft2ynjh+DZlNp2toM= |
| 28 |
=zo74 |
| 29 |
-----END PGP SIGNATURE----- |
Archives