| 1 |
> You forgot the link to [1]. |
| 2 |
Already mailed but here again: |
| 3 |
http://wiki.gentoo.org/wiki/DM-Crypt |
| 4 |
|
| 5 |
> Never used loop-aes myself. Sorry if I miss the reason for your |
| 6 |
> confusion because of it. |
| 7 |
http://loop-aes.sourceforge.net |
| 8 |
|
| 9 |
There is the source code. It needs patched util-linux(-ng) package to get working. Also you should not use (crypt-)loop because it conflicts with it (see README inside tar ball). It also provides a really simple swap encryption: |
| 10 |
|
| 11 |
- /etc/fstab - |
| 12 |
/dev/blaX none swap sw,loop=/dev/loop0,encryption=AES256,itercountk=100 0 0 |
| 13 |
|
| 14 |
This will make sure that everytime you bootup your system a new encryption is setup with an iteration of 100 (still performant enough for most things). |
| 15 |
|
| 16 |
> Opening a dmcrypt volume creates a mapped block device in /dev/mapper. |
| 17 |
> You treat it like a partition and format it with ext4. Unless you use |
| 18 |
> some exotic flags for mke2fs, the journal will be put on the same block |
| 19 |
> device and is encrypted along with the rest of it. |
| 20 |
> |
| 21 |
> So: No need to worry about it. |
| 22 |
Thank you for the explanation. Maybe it should be added to the wiki? |
| 23 |
|
| 24 |
> |
| 25 |
> Hope this helps, |
| 26 |
> Florian Philipp |
| 27 |
Sure it does. :) |
| 28 |
|
| 29 |
Roland |
Archives