[gentoo-dev] loop-aes ebuild removed - why?

[gentoo-dev] loop-aes ebuild removed - why?

[Klavs Klavsen]

[-- Attachment #1: Type: text/plain, Size: 1524 bytes --]

Hi guys,

I'm trying to make my encrypted disk work for 2.4 and(!) 2.6(or just
2.6), but my current encrypted disk, using cryptoloop in gentoo-sources
doesn't work with util-linux-2.12 - and not with 2.6 either :(

I've read that Alan Cox (the kernel guy, in case you don't know) says
that the cryptoloop driver (from kerneli.org guys) is really filled with
crappy code and bugs, and the loop-aes driver should be much better, and
it works on both kernel-versions and with util-linux-2.12 AFAIK, so I'd
like to switch to that, and remember that Gentoo used to have an
loop-aes ebuild.

Why is it gone?

What do you guys do, to get encrypted disks?

And am I the only one who would like an encryption that supports
plausable deniability (like rubberhose.org does - but only for 2.2
kernels)? would be too cool, to be able to give one password, and you
only see a certain set of files - and another then you can see the other
files - but you can't see that a second set of files exists (and if you
fill up the partition, given only one of the passwords, the other will
ofcourse be overwritten - but it will never be noticed that it was ever
there :)

-- 
Regards,
Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk
PGP: 7E063C62/2873 188C 968E 600D D8F8  B8DA 3D3A 0B79 7E06 3C62
See my new CMS Hosting Service at http://www.VirkPaaNettet.dk

Working with Unix is like wrestling a worthy opponent. 
Working with windows is like attacking a small whining child 
who is carrying a .38.				

[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 189 bytes --]

Re: [gentoo-dev] loop-aes ebuild removed - why?

[Luca Barbato]

I'm extending cryptoloop 2.6 to support compressors (almost done) and 
losetup -e name /dev/loop? /where/your/file/is
works fine.

the util-linux version I use is the latest in portage (the .12).

Which parameters you use?

regards

lu

Klavs Klavsen wrote:
> Hi guys,
> 
> I'm trying to make my encrypted disk work for 2.4 and(!) 2.6(or just
> 2.6), but my current encrypted disk, using cryptoloop in gentoo-sources
> doesn't work with util-linux-2.12 - and not with 2.6 either :(
> 



-- 
Luca Barbato
Developer
Gentoo Linux				http://www.gentoo.org/~lu_zero




--
gentoo-dev@gentoo.org mailing list

Re: [gentoo-dev] loop-aes ebuild removed - why?

[Klavs Klavsen]

[-- Attachment #1: Type: text/plain, Size: 837 bytes --]

On fre, 2003-09-05 at 09:49, Luca Barbato wrote:
> I'm extending cryptoloop 2.6 to support compressors (almost done) and 
> losetup -e name /dev/loop? /where/your/file/is
> works fine.
> 
> the util-linux version I use is the latest in portage (the .12).
> 
> Which parameters you use?
> 
http://forums.gentoo.org/viewtopic.php?t=74369&highlight=utillinux

says it all :)

any help to what would be best to use, to work with util-linux-2.12 and
2.4/2.6 is very welcome.
 
-- 
Regards,
Klavs Klavsen, GSEC - kl@vsen.dk - http://www.vsen.dk
PGP: 7E063C62/2873 188C 968E 600D D8F8  B8DA 3D3A 0B79 7E06 3C62
See my new CMS Hosting Service at http://www.VirkPaaNettet.dk

Working with Unix is like wrestling a worthy opponent. 
Working with windows is like attacking a small whining child 
who is carrying a .38.				

[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 189 bytes --]

Re: [gentoo-dev] loop-aes ebuild removed - why?

[Spider]

[-- Attachment #1: Type: text/plain, Size: 1063 bytes --]

begin  quote
On Fri, 05 Sep 2003 09:49:17 +0200
Luca Barbato <lu_zero@gentoo.org> wrote:

> I'm extending cryptoloop 2.6 to support compressors (almost done) and 
> losetup -e name /dev/loop? /where/your/file/is
> works fine.


As i see this thread i thought I'd reply, I too am using loop-aes for my
encryption, this includes /home and other "vital" parts of the disk. So
far I've maintained the patch and accessories outside of portage, and
the patches too mount/losetup haven't worked against util-linux .12


the parameters are quite "standard" 
/dev/hdc6       /home           ext3           
defaults,noauto,loop=/dev/loop6,encryption=AES128 0 0


The main choice for me too was the consistency in the setup when
choosing loop-aes. it would work on future kernels (2.6) just as it did
in 2.4.  Major selling point, especially with the global uncertainity
around kerneli.org and the kernel cryptoapi

//Spider


-- 
begin  .signature
This is a .signature virus! Please copy me into your .signature!
See Microsoft KB Article Q265230 for more information.
end

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]