1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
On 04/29/2014 12:27 PM, Walter Dnes wrote: |
5 |
> On Mon, Apr 28, 2014 at 09:51:18PM -0400, Rick "Zero_Chaos" Farina wrote |
6 |
> |
7 |
>> I suggest with LUKS. Also I suggest using ext4 and disabling the |
8 |
>> journal (mkfs.ext4 -O ^has_journal). |
9 |
> |
10 |
> I didn't know you could do that, but what's the point? I'm not trying |
11 |
> to be argumentative, but isn't ext4 without a journal a glorified ext2? |
12 |
> I believe that an ext2 driver can read ext4, if none of the fancy ext4 |
13 |
> options have been invoked. And ext4 can read ext2. |
14 |
|
15 |
I'm not a filesystem expert but there are more differences between ext2 |
16 |
and ext4 than the journal... I think :-) |
17 |
> |
18 |
> Another couple of things I didn't realize. According to |
19 |
> https://wiki.gentoo.org/wiki/Dm-crypt I have to build in support for the |
20 |
> crypt target in the kernel. It also suggests |
21 |
> <*> SHA224 and SHA256 digest algorithm |
22 |
> |
23 |
> Any comments on their strength? I'm not worried about the NSA or CSIS |
24 |
> as much as opportunistic criminals. |
25 |
|
26 |
I use whirlpool. Why you ask? It sounds cool! Also it supported 512bit |
27 |
which seems nice. |
28 |
> |
29 |
> One other item in passing. The "make menuconfig" help text for |
30 |
> CONFIG_DM_CRYPT points to http://www.saout.de/misc/dm-crypt/ but that |
31 |
> site says, and I quote... |
32 |
> |
33 |
>> Note: This page is horribly out of date. |
34 |
>> You can find the current pages for the dm-crypt project (the Linux |
35 |
>> kernel part) here: http://code.google.com/p/cryptsetup/wiki/DMCrypt |
36 |
>> and the project page for the command line tool cryptsetup (with Linux |
37 |
>> Unified Key Setup - LUKS) here: http://code.google.com/p/cryptsetup/. |
38 |
> |
39 |
> Who should be notified about this? I don't think kernel help text |
40 |
> (except for Gentoo Sources patches) is handled by Gentoo developers. |
41 |
> |
42 |
https://bugzilla.kernel.org/ |
43 |
|
44 |
Thanks, |
45 |
Zero |
46 |
-----BEGIN PGP SIGNATURE----- |
47 |
Version: GnuPG v2.0.22 (GNU/Linux) |
48 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
49 |
|
50 |
iQIcBAEBAgAGBQJTX+I+AAoJEKXdFCfdEflKolMP/isYoZMccymIqKeVI/MVDxSM |
51 |
2EMuEFVpopcvmvuDwRXw0U9XB0b04Yr8SDevL+Tb+zOgSGidKGX4cAwHkAH5p2fp |
52 |
KOchjP0gXzO/oHfRJgaECP7G8ovtvaOyiUdokb352D1RJsYcq/aqXGbNNDLmziZo |
53 |
Ng3qR8R3/3TuwJSZZ8TGFFN/wBc05yUzWy+FD9YDWucn6fBQrloogU/Ie5Pdussf |
54 |
xxQt/Hb4+6Rjz8mUsGs2vWcoHHkyYmOAt/Qp5HaZ4bwXtZEpxB49xAPXjAyi2Z2n |
55 |
Z99+xR14BpAi61RdsJE3OIbOscf5w5prx7gWtoWKKCSvWX9OL7/F22duBZP2KnVx |
56 |
Epwv4+sySlb0Cco+gd6Chxw3HsKPqiNhSoObTMzdFVoqZHoBhut8/d1ynwcI46+J |
57 |
+kVfXUOhKIchFf4KVTcQxO3uD3BniDhZc17AB5KNy52A9cKX+OEEZGdu/JxzwwjQ |
58 |
BTkUkbb8cDc5PSB/zE0udksxFWcSIJR231oUMesWdtCT7R81ZonBEg3lE1UpmCaB |
59 |
neg+RPhdEMA7zPLq8SdaNUuz0xoxDRRFX43mwLyXdf/EcHoGIFazjHb9AW/Yu3WF |
60 |
4cYVXAlNQ69/Q84M6jlLR+9ED5zegLy3WsVApE1+Am9uEwYmoO5Lnk69wxr3pGkf |
61 |
mDfrIIdHQlY45aP/tnFz |
62 |
=JKfw |
63 |
-----END PGP SIGNATURE----- |