From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FCe0r-0006SK-Tn for garchives@archives.gentoo.org; Fri, 24 Feb 2006 14:33:42 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k1OEWdQ2018764; Fri, 24 Feb 2006 14:32:39 GMT Received: from um1.unlimitedmail.net (139.Red-80-26-111.staticIP.rima-tde.net [80.26.111.139]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k1OEPJR7019870 for ; Fri, 24 Feb 2006 14:25:21 GMT Received: from ppp.zz ([137.204.208.98]) (authenticated bits=0) by um1.unlimitedmail.net (8.13.4/8.13.4) with ESMTP id k1OEP5Aw025272 for ; Fri, 24 Feb 2006 15:25:06 +0100 From: Etaoin Shrdlu To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Encrypting removable media Date: Fri, 24 Feb 2006 15:42:39 +0100 User-Agent: KMail/1.8.3 References: <20060224141818.GA359@huxley.linguistik.uni-erlangen.de> In-Reply-To: <20060224141818.GA359@huxley.linguistik.uni-erlangen.de> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200602241542.39873.shrdlu@unlimitedmail.org> X-UnlimitedMail-MailScanner: Found to be clean X-UnlimitedMail-MailScanner-From: shrdlu@unlimitedmail.org X-Archives-Salt: eefc8bdf-9088-4e57-af0e-ef1ea7813772 X-Archives-Hash: 569e69019f7eab28fc8544684345ecb5 On Friday 24 February 2006 15:18, Matthias Bethke wrote: > I have a bit of chicken-and-egg problem trying to get encrypted > removable devices to work as "normal" as possible. > Using Loop-AES and a GPG-encrypted key I had no problems encrypting my > external FW drive, but to pass all the options to losetup without > entering them by hand every time, I need an fstab entry. The drive > shows up as /dev/sda, but putting /dev/sda1 there is no good as it > would try to use Loop-AES on *every* external drive. So far I could > just use volume labels in my fstab to distinguish any number of > drives---well, I used to until hald/dbus made that automatic. But now > there are no labels any more as they get encrypted as well. > Has anyone come up with a solution for this yet? I could imagine some > plugin for the hotplug system that checks /proc/scsi/scsi for a > certain model before mounting. Not the cleanest solution either but as > my external drives are different models it would work for me. I don't > have much of a clue about the hotplug system though... With udev you can create hardware-specific devices (meaning you can have a device in /dev that corresponds exactly to some particular hard disk), based on various hardware-specific information (eg, manufacturer name or device id and many others) See http://www.reactivated.net/writing_udev_rules.html for the details. -- gentoo-user@gentoo.org mailing list