| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
On 04/29/2014 12:27 PM, Walter Dnes wrote: |
| 5 |
> On Mon, Apr 28, 2014 at 09:51:18PM -0400, Rick "Zero_Chaos" Farina wrote |
| 6 |
> |
| 7 |
>> I suggest with LUKS. Also I suggest using ext4 and disabling the |
| 8 |
>> journal (mkfs.ext4 -O ^has_journal). |
| 9 |
> |
| 10 |
> I didn't know you could do that, but what's the point? I'm not trying |
| 11 |
> to be argumentative, but isn't ext4 without a journal a glorified ext2? |
| 12 |
> I believe that an ext2 driver can read ext4, if none of the fancy ext4 |
| 13 |
> options have been invoked. And ext4 can read ext2. |
| 14 |
|
| 15 |
I'm not a filesystem expert but there are more differences between ext2 |
| 16 |
and ext4 than the journal... I think :-) |
| 17 |
> |
| 18 |
> Another couple of things I didn't realize. According to |
| 19 |
> https://wiki.gentoo.org/wiki/Dm-crypt I have to build in support for the |
| 20 |
> crypt target in the kernel. It also suggests |
| 21 |
> <*> SHA224 and SHA256 digest algorithm |
| 22 |
> |
| 23 |
> Any comments on their strength? I'm not worried about the NSA or CSIS |
| 24 |
> as much as opportunistic criminals. |
| 25 |
|
| 26 |
I use whirlpool. Why you ask? It sounds cool! Also it supported 512bit |
| 27 |
which seems nice. |
| 28 |
> |
| 29 |
> One other item in passing. The "make menuconfig" help text for |
| 30 |
> CONFIG_DM_CRYPT points to http://www.saout.de/misc/dm-crypt/ but that |
| 31 |
> site says, and I quote... |
| 32 |
> |
| 33 |
>> Note: This page is horribly out of date. |
| 34 |
>> You can find the current pages for the dm-crypt project (the Linux |
| 35 |
>> kernel part) here: http://code.google.com/p/cryptsetup/wiki/DMCrypt |
| 36 |
>> and the project page for the command line tool cryptsetup (with Linux |
| 37 |
>> Unified Key Setup - LUKS) here: http://code.google.com/p/cryptsetup/. |
| 38 |
> |
| 39 |
> Who should be notified about this? I don't think kernel help text |
| 40 |
> (except for Gentoo Sources patches) is handled by Gentoo developers. |
| 41 |
> |
| 42 |
https://bugzilla.kernel.org/ |
| 43 |
|
| 44 |
Thanks, |
| 45 |
Zero |
| 46 |
-----BEGIN PGP SIGNATURE----- |
| 47 |
Version: GnuPG v2.0.22 (GNU/Linux) |
| 48 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
| 49 |
|
| 50 |
iQIcBAEBAgAGBQJTX+I+AAoJEKXdFCfdEflKolMP/isYoZMccymIqKeVI/MVDxSM |
| 51 |
2EMuEFVpopcvmvuDwRXw0U9XB0b04Yr8SDevL+Tb+zOgSGidKGX4cAwHkAH5p2fp |
| 52 |
KOchjP0gXzO/oHfRJgaECP7G8ovtvaOyiUdokb352D1RJsYcq/aqXGbNNDLmziZo |
| 53 |
Ng3qR8R3/3TuwJSZZ8TGFFN/wBc05yUzWy+FD9YDWucn6fBQrloogU/Ie5Pdussf |
| 54 |
xxQt/Hb4+6Rjz8mUsGs2vWcoHHkyYmOAt/Qp5HaZ4bwXtZEpxB49xAPXjAyi2Z2n |
| 55 |
Z99+xR14BpAi61RdsJE3OIbOscf5w5prx7gWtoWKKCSvWX9OL7/F22duBZP2KnVx |
| 56 |
Epwv4+sySlb0Cco+gd6Chxw3HsKPqiNhSoObTMzdFVoqZHoBhut8/d1ynwcI46+J |
| 57 |
+kVfXUOhKIchFf4KVTcQxO3uD3BniDhZc17AB5KNy52A9cKX+OEEZGdu/JxzwwjQ |
| 58 |
BTkUkbb8cDc5PSB/zE0udksxFWcSIJR231oUMesWdtCT7R81ZonBEg3lE1UpmCaB |
| 59 |
neg+RPhdEMA7zPLq8SdaNUuz0xoxDRRFX43mwLyXdf/EcHoGIFazjHb9AW/Yu3WF |
| 60 |
4cYVXAlNQ69/Q84M6jlLR+9ED5zegLy3WsVApE1+Am9uEwYmoO5Lnk69wxr3pGkf |
| 61 |
mDfrIIdHQlY45aP/tnFz |
| 62 |
=JKfw |
| 63 |
-----END PGP SIGNATURE----- |
Archives