From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Jfveo-0001va-1j for garchives@archives.gentoo.org; Sun, 30 Mar 2008 11:25:02 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 4FEEAE04E2; Sun, 30 Mar 2008 11:25:00 +0000 (UTC) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.188]) by pigeon.gentoo.org (Postfix) with ESMTP id 1428CE04E2 for ; Sun, 30 Mar 2008 11:25:00 +0000 (UTC) Received: from rohan.altum.de (p54BBB00B.dip0.t-ipconnect.de [84.187.176.11]) by mrelayeu.kundenserver.de (node=mrelayeu0) with ESMTP (Nemesis) id 0MKwh2-1Jfvek2ty8-000820; Sun, 30 Mar 2008 13:24:58 +0200 To: gentoo-user@lists.gentoo.org Date: Sun, 30 Mar 2008 13:24:43 +0200 Subject: Re: [gentoo-user] Cryptfs Message-ID: <200803301324.47951.dirk.heinrichs@online.de> From: "Dirk Heinrichs" Organization: Mail Received: from gondolin (gondolin.altum.de [192.168.2.24]) by rohan.altum.de; Sun, 30 Mar 2008 13:24:48 +0200 Organization: Privat User-Agent: KMail/1.9.9 References: <1206811941.13252.13.camel@NOTE_GENTOO64.PHHEIMNETZ> <200803300950.53721.dirk.heinrichs@online.de> <1206876274.13252.19.camel@NOTE_GENTOO64.PHHEIMNETZ> In-Reply-To: <1206876274.13252.19.camel@NOTE_GENTOO64.PHHEIMNETZ> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1448463.Fl2nq2pxZO"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit X-Provags-ID: V01U2FsdGVkX1+4Ig+9GHBdspa9rHPHvl0657iR39rk5p+H3Rg xVGr4aN5KeI5SXbWyhxOLrIxs407pgXVoSGAgQ0535M7ot21x0 dC+QptkBIHtZ435bR1LjQ== X-Archives-Salt: 8e847919-7dd0-48b5-b150-b82d0f4b9187 X-Archives-Hash: ee7c45f50adcc53348cb29314fd65cea --nextPart1448463.Fl2nq2pxZO Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Am Sonntag, 30. M=C3=A4rz 2008 schrieb Florian Philipp: > On Sun, 2008-03-30 at 09:50 +0200, Dirk Heinrichs wrote: > > Am Samstag, 29. M=C3=A4rz 2008 schrieb Florian Philipp: > > > My goal is to open a Luks-mapping for /var with a gpg-encrypted file > > > on /boot and then open a mapping for /var/tmp with a plaintext file > > > on /var. > > > > See below. But while we're at it, can anybody tell me what's the > > advantage of a gpg-encrypted keyfile over a keyfile generated from > > /dev/urandom? > > Keys for urandom work great for /tmp and swap but how should I use this > for a partition which is supposed to keep its content between reboots? See my example below. > > Which warning, btw.? Works just fine here. > > "# Note when using gpg keys and /usr on a separate partition, you will > # have to copy /usr/bin/gpg to /bin/gpg so that it will work properly > # and ensure that gpg has been compiled statically. > # See http://bugs.gentoo.org/90482 for more information." Ah, I see. Since I don't use gpg it doesn't matter to me. > > target=3D'c-usr' > > source=3D'/dev/evms/usr' > > key=3D'/etc/crypt/keyfile' Bye... Dirk --nextPart1448463.Fl2nq2pxZO Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iD8DBQBH73h/8NVtnsLkZ7sRAtvUAJ4v2ZEyfBNDaKHKksF6BZPf0TK6MQCfS1qf MN+qKK0iNKICFqxCPnxKeoE= =GeLi -----END PGP SIGNATURE----- --nextPart1448463.Fl2nq2pxZO-- -- gentoo-user@lists.gentoo.org mailing list