Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] Securing data on disk - when disk taken out of computer ?
  • From: Rainer Duffner <rainer@xxxxxxxxxxxxxxx>
  • Date: Wed, 30 Mar 2005 17:59:54 +0200
  • Message-id: <424ACCFA.3060308@xxxxxxxxxxxxxxx>
Robert Rozman wrote:

Hi,

I'm seeking for solution, that would let me ecrypt partition of file on
disk, but be somehow automatically mounted on reboot (without prompting for
password) , but still secured if someone takes disk out and tries to mount
on another system...

I'm newbie, so please be gentle - it could be impossible to achieve...

How to do this?


Then, you'd need to run a script that could feed the password to boot.crypto.
The password, you'd have to supply on e.g. a USB-stick which you should only plug-in on boot.

BTW: Is it for a laptop or a fixed PC?

I use the loopback crypto-stuff to encrypt my /home on my laptop and it works very well, though slows down the machine like molasses.
But it gives me peace of mind that whoever steals the machine won't have access to my ssh private key, my gpg private key, all my mails and all the customer-data that sits on it.
It's just a useless piece of metal and plastic.




cheers,
Rainer

--
===================================================
~ Rainer Duffner - rainer@xxxxxxxxxxxxxxx ~
~ Freising - Munich - Germany ~
~ Unix - Linux - BSD - OpenSource - Security ~
~ http://www.ultra-secure.de/~rainer/pubkey.pgp ~
===================================================


< Previous Next >
References