Archives
Archives
| From: | Maxim Kammerer <mk@×××.su> | ||
|---|---|---|---|
| To: | gentoo-hardened@l.g.o | ||
| Subject: | Re: [gentoo-hardened] Tin Hat 20121015 released. | ||
| Date: | Wed, 17 Oct 2012 00:02:39 | ||
| Message-Id: | CAHsXYDBcFYyW8dyNpRwmJNFE0_xxm-YnksO8kkNe7Q-44=Rm4Q@mail.gmail.com | ||
| In Reply to: | Re: [gentoo-hardened] Tin Hat 20121015 released. by Matthew Thode |
||
| 1 | On Wed, Oct 17, 2012 at 1:20 AM, Matthew Thode |
| 2 | <prometheanfire@g.o> wrote: |
| 3 | > I still want you to include TRESSOR support :D |
| 4 | > http://en.wikipedia.org/wiki/TRESOR |
| 5 | |
| 6 | If I understand its operation mode correctly, TRESOR prompts for a |
| 7 | password during boot, and hijacks the kernel's crypto API by ignoring |
| 8 | keys that are supplied to the cipher. I don't think it's a good idea |
| 9 | to include it in any distribution at present. |
| 10 | |
| 11 | -- |
| 12 | Maxim Kammerer |
| 13 | Liberté Linux: http://dee.su/liberte |