[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] How do I encypt the swap (partition[s]) under SuSE 9.3 Prof ?

Hi Christiph,
first, it`s a good thing to encrypt swap.
Cause you  never know what is swaped out.

There was an Article about this in Linux-magazine
some time ago. (Sorry, you` gotta search on youre own. ;-( )

The way was to format swap every boottime with a new
generated encryption Key and store the key only in
the Kernel.
So, after shutdown, decryption of swap is impossible.

Do not store the Key anywhere unencrypted.
Use a howto encrypt Filesystems HOWTO.

And don`t use suspend to harddisk ;-))


Christoph Merk wrote:
> 'cause all our precious passwd's and line-inputs r stored here legible
> for anyone who opens our box!
> It's an open invitation 2 any1. It's basically the drawer where u left
> all our passwds and and infos where u
> thought no1 cud read 'em.....  is that reason enough? thnx & have a
> great crypted day!
> c :-)
> miguel gmail wrote:
>> Hi,
>>>> Can anyone tell me how to encrypt swap under SuSE
>>>> 9.3? This is standard on Mac's and should be as well possible in
>>>> 9.3.
>>> On a  SUSE 9.2 (default-kernel) system it was almost trivially easy to
>>> set up an encrypted swap, IIRC.
>>> You can try this for your 9.3:
>> Sorry to break the thread... but, what's the point to encrypt the swap?
>> Thanks!
>> --
>> Saludos,
>> miguel

TRIA IT-consulting GmbH 
Joseph-Wild-Straße 20 
81829 München 
Tel: +49 (89) 92907-0 
Fax: +49 (89) 92907-100  
Registergericht München HRB 113466 
USt.-IdNr. DE 180017238 Steuer-Nr. 802/40600 
Geschäftsführer: Richard Hofbauer 
kaufm. Geschäftsleitung: Rosa Igl 
 Nachricht von: 
Nachricht an: 
merkc@xxxxxx, miguel.listas@xxxxxxxxx, suse-security@xxxxxxxx 
# Dateianhänge: 0 
Die Mitteilung dieser E-Mail ist vertraulich und nur für den oben genannten Empfänger bestimmt. Wenn Sie nicht der vorgesehene Empfänger dieser E-Mail oder mit der Aushändigung an ihn betraut sind, weisen wir darauf hin, daß jede Form der Kenntnisnahme, Veröffentlichung, Vervielfältigung sowie Weitergabe des Inhalts untersagt ist. Wir bitten Sie uns in diesem Fall umgehend zu unterrichten. 
Vielen Dank  
The information contained in this E-Mail is privileged and confidental intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient or competent to deliver it to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this E-Mail is strictly prohibited. If you have received this E-Mail in error, please notify us immediately. 
Thank you 

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here