[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] SlightlyOT: [was] How do I encrypt the swap (partition[s]) under SuSE 9.3 Prof ?

Hi Sebastian,

Sebastian Kübeck wrote:
> Stupid question:
> How about having no swap partition at all and giving the box enough RAM?

This is possible, but has some performance hints.
(You can use less Ram for HD-caching.)

> I couldn't think of a bullet prove way of hiding the key for the 
> encrypted partition.

You do not need to store the Key, cause the key is only
held in the memory during runtime, and lost during shutdown.
There is a new Key generated every boottime.

Remember, swapspace, like Ram can be empty during booting.

 An option would be that you enter a password
> Every time you boot the box but that's most probably not what you want.



TRIA IT-consulting GmbH 
Joseph-Wild-Straße 20 
81829 München 
Tel: +49 (89) 92907-0 
Fax: +49 (89) 92907-100  
Registergericht München HRB 113466 
USt.-IdNr. DE 180017238 Steuer-Nr. 802/40600 
Geschäftsführer: Richard Hofbauer 
kaufm. Geschäftsleitung: Rosa Igl--------------------------------------------------------
Nachricht von: Dirk.Schreiner@xxxxxxx 
Nachricht an: kuebeck@xxxxxxxx, suse-security@xxxxxxxx 
# Dateianhänge: 0 

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here