From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1GCODU-0000Jj-S1 for garchives@archives.gentoo.org; Sun, 13 Aug 2006 22:13:57 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.7/8.13.6) with SMTP id k7DMBjOt028191; Sun, 13 Aug 2006 22:11:45 GMT Received: from out4.smtp.messagingengine.com (out4.smtp.messagingengine.com [66.111.4.28]) by robin.gentoo.org (8.13.7/8.13.6) with ESMTP id k7DM9hje005436 for ; Sun, 13 Aug 2006 22:09:43 GMT Received: from frontend3.internal (frontend3.internal [10.202.2.152]) by frontend1.messagingengine.com (Postfix) with ESMTP id 89B23D9A6E6 for ; Sun, 13 Aug 2006 18:09:41 -0400 (EDT) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by frontend3.internal (MEProxy); Sun, 13 Aug 2006 18:09:42 -0400 X-Sasl-enc: upfIPQvtnuqW8o5Wj21fdo2nTtRL0W9EXy1UF6Euah2p 1155506981 Received: from localhost (67-54-206-89.cust.wildblue.net [67.54.206.89]) by mail.messagingengine.com (Postfix) with ESMTP id 2888D8B59 for ; Sun, 13 Aug 2006 18:09:41 -0400 (EDT) Date: Sun, 13 Aug 2006 18:09:33 -0400 From: "John J. Foster" To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Guidance on encrypting my /home Message-ID: <20060813220933.GC9653@garbanzo> Mail-Followup-To: gentoo-user@lists.gentoo.org References: <20060813002233.GA9653@garbanzo> <7573e9640608121832w6750aac0tfdfd097c0439d3c5@mail.gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="YD3LsXFS42OYHhNZ" Content-Disposition: inline In-Reply-To: <7573e9640608121832w6750aac0tfdfd097c0439d3c5@mail.gmail.com> Organization: Representing the Mambo User-Agent: Mutt/1.5.12-2006-07-14 X-Archives-Salt: ea6f79e1-9311-45b2-8785-fe5356a47f9c X-Archives-Hash: 50defe2265ae85865291025d47ac8a27 --YD3LsXFS42OYHhNZ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Aug 12, 2006 at 06:32:49PM -0700, Richard Fish wrote: > On 8/12/06, John J. Foster wrote: > >Do you encrypt your home directory? >=20 > I encrypt everything except /boot. >=20 > >What apps and/or combination of apps do you use, and why? >=20 > dm-crypt with cryptsetup using the LUKS format. >=20 > >Which ciphers do you prefer? Why? >=20 > aes-cbc-essiv:sha256, 128bit, because it is fast. >=20 > >Is it well supported? >=20 > In the kernel, about as well supported as you can get. >=20 Ok, this looks like a setup I'd be pleased with. Right now I have=20 / /boot swap How much of a pain will it be to implement now? Or will I be better off waiting about 6 months till I get a laptop, and then following the guide at http://gentoo-wiki.com/SECURITY_System_Encryption_DM-Crypt_with_LUKS and in the meantime continue using cfs? Is that guide pretty accurate? Thanks, festus --=20 In all the millions of years dinosaurs roamed this planet, did any of them feel the need to invent, say, nuclear weapons? Mickeyz --YD3LsXFS42OYHhNZ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFE36Md4FEnevDNLQ4RAuSMAJ9NCks7TwCbzTHVLP+E5A189tV8BwCePI8B 946iwLB4PXHALt7PUB/lYl0= =Phb8 -----END PGP SIGNATURE----- --YD3LsXFS42OYHhNZ-- -- gentoo-user@gentoo.org mailing list