From: | Maxim Kammerer <mk@×××.su> | ||
---|---|---|---|
To: | gentoo-hardened@l.g.o | ||
Subject: | Re: [gentoo-hardened] Tin Hat 20121015 released. | ||
Date: | Wed, 17 Oct 2012 00:02:39 | ||
Message-Id: | CAHsXYDBcFYyW8dyNpRwmJNFE0_xxm-YnksO8kkNe7Q-44=Rm4Q@mail.gmail.com | ||
In Reply to: | Re: [gentoo-hardened] Tin Hat 20121015 released. by Matthew Thode |
1 | On Wed, Oct 17, 2012 at 1:20 AM, Matthew Thode |
2 | <prometheanfire@g.o> wrote: |
3 | > I still want you to include TRESSOR support :D |
4 | > http://en.wikipedia.org/wiki/TRESOR |
5 | |
6 | If I understand its operation mode correctly, TRESOR prompts for a |
7 | password during boot, and hijacks the kernel's crypto API by ignoring |
8 | keys that are supplied to the cipher. I don't think it's a good idea |
9 | to include it in any distribution at present. |
10 | |
11 | -- |
12 | Maxim Kammerer |
13 | Liberté Linux: http://dee.su/liberte |