|Jeff Schroeder on 20 Nov 2003 14:26:55 -0000|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|Re: [hosers-talk] script-fu for trash|
At 12:47 AM 11/19/2003, Jon Stewart wrote:
> There already is at least one encrypted file system that Linux can handle, > thought I don't remember the name of it right now. A quick google reveals that the "standard" way to do it is the loopback encryption filesystem. You have a regular filesystem which contains an encrypted file which is mounted over loopback. SecurityFocus says it's vulnerable to a replay attack, though no exploits are known and this would be difficult; nonetheless, it's a design flaw. I'm not particularly crazy about the idea because it seems like a really lazy way to support an encrypted fs. You've gotta' be taking a pretty decent performance hit. OTOH, it does sound simple enough to be reliable. And, man, I am lazy...
There is CFS also, however it appears to have become depreciated or at least old...
http://www.crypto.com/software/I am rather disappointed if that is the case. Although, I'd be surprised if a modern file system like RiserFS or even ext3 (eventually) doesn't have someone working on a build model that supports some sort of encryption.
Quick google search shows possible other alternatives http://koeln.ccc.de/archiv/drt/crypto/linux-disk.html _______________________________________________ hosers-talk mailing list hosers-talk@xxxxxxxxxxx http://lists.ellipsis.cx/mailman/listinfo/hosers-talk