From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FCdwf-0003Ll-2r for garchives@archives.gentoo.org; Fri, 24 Feb 2006 14:29:21 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k1OER3Sx019334; Fri, 24 Feb 2006 14:27:03 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k1OEI8jb018298 for ; Fri, 24 Feb 2006 14:18:08 GMT Received: from mail.gmx.net ([213.165.64.20]) by smtp.gentoo.org with smtp (Exim 4.54) id 1FCdln-0000ZV-V7 for gentoo-user@lists.gentoo.org; Fri, 24 Feb 2006 14:18:08 +0000 Received: (qmail invoked by alias); 24 Feb 2006 14:18:07 -0000 Received: from notebook15.linguistik.uni-erlangen.de (EHLO huxley.mblan) [131.188.185.185] by mail.gmx.net (mp029) with SMTP; 24 Feb 2006 15:18:07 +0100 X-Authenticated: #428074 Received: by huxley.mblan (Postfix, from userid 1000) id 2A4CEAFB3B; Fri, 24 Feb 2006 15:18:19 +0100 (CET) Date: Fri, 24 Feb 2006 15:18:18 +0100 From: Matthias Bethke To: gentoo-user@lists.gentoo.org Subject: [gentoo-user] Encrypting removable media Message-ID: <20060224141818.GA359@huxley.linguistik.uni-erlangen.de> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="8t9RHnE3ZwKMSgU+" Content-Disposition: inline User-Agent: Mutt/1.5.11 X-Y-GMX-Trusted: 0 X-Archives-Salt: 34101a3c-426c-43f8-a51b-0f06b6d68d7f X-Archives-Hash: b1b75f7be2c74426fb47a056ccc99322 --8t9RHnE3ZwKMSgU+ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I have a bit of chicken-and-egg problem trying to get encrypted removable devices to work as "normal" as possible. Using Loop-AES and a GPG-encrypted key I had no problems encrypting my external FW drive, but to pass all the options to losetup without entering them by hand every time, I need an fstab entry. The drive shows up as /dev/sda, but putting /dev/sda1 there is no good as it would try to use Loop-AES on *every* external drive. So far I could just use volume labels in my fstab to distinguish any number of drives---well, I used to until hald/dbus made that automatic. But now there are no labels any more as they get encrypted as well. Has anyone come up with a solution for this yet? I could imagine some plugin for the hotplug system that checks /proc/scsi/scsi for a certain model before mounting. Not the cleanest solution either but as my external drives are different models it would work for me. I don't have much of a clue about the hotplug system though... regards Matthias --=20 I prefer encrypted and signed messages. KeyID: FAC37665 Fingerprint: 8C16 3F0A A6FC DF0D 19B0 8DEF 48D9 1700 FAC3 7665 --8t9RHnE3ZwKMSgU+ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.1 (GNU/Linux) iD8DBQFD/xWpSNkXAPrDdmURAmYIAKCuRKAE+UBG5Q7S2/UOg3Zbv1LLOQCgto9N R/WE6hFvai0zi66rERc3fZQ= =5fYk -----END PGP SIGNATURE----- --8t9RHnE3ZwKMSgU+-- -- gentoo-user@gentoo.org mailing list