Hi Sebastian, Sebastian Kübeck wrote:
Stupid question: How about having no swap partition at all and giving the box enough RAM?
This is possible, but has some performance hints. (You can use less Ram for HD-caching.)
I couldn't think of a bullet prove way of hiding the key for the encrypted partition.
You do not need to store the Key, cause the key is only held in the memory during runtime, and lost during shutdown. There is a new Key generated every boottime. Remember, swapspace, like Ram can be empty during booting. An option would be that you enter a password
Every time you boot the box but that's most probably not what you want.
Right. Dirk [...] TRIA IT-consulting GmbH Joseph-Wild-Straße 20 81829 München Germany Tel: +49 (89) 92907-0 Fax: +49 (89) 92907-100 http://www.tria.de Registergericht München HRB 113466 USt.-IdNr. DE 180017238 Steuer-Nr. 802/40600 Geschäftsführer: Richard Hofbauer kaufm. Geschäftsleitung: Rosa Igl-------------------------------------------------------- Nachricht von: Dirk.Schreiner@tria.de Nachricht an: kuebeck@qenta.at, suse-security@suse.com # Dateianhänge: 0