From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1JgF77-0006Dl-6m for garchives@archives.gentoo.org; Mon, 31 Mar 2008 08:11:33 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 4190FE00FB; Mon, 31 Mar 2008 08:11:31 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id F1E54E00FB for ; Mon, 31 Mar 2008 08:11:30 +0000 (UTC) Received: from loonquawl.digimed.co.uk (loonquawl.digimed.co.uk [192.168.1.5]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.digimed.co.uk (Postfix) with ESMTPSA id 41F5C326AB5 for ; Mon, 31 Mar 2008 09:11:30 +0100 (BST) Date: Mon, 31 Mar 2008 09:11:29 +0100 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Cryptfs Message-ID: <20080331091129.5915c0f2@loonquawl.digimed.co.uk> In-Reply-To: <200803310836.58101.dirk.heinrichs.ext@nsn.com> References: <1206811941.13252.13.camel@NOTE_GENTOO64.PHHEIMNETZ> <200803301851.04547.dirk.heinrichs@online.de> <20080330211304.1e9506aa@loonquawl.digimed.co.uk> <200803310836.58101.dirk.heinrichs.ext@nsn.com> Organization: Digital Media Production X-Mailer: Claws Mail 3.3.1cvs45 (GTK+ 2.12.9; x86_64-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Face: 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 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; boundary="Sig_/_b=K=iShKCllidFROgIhmsZ"; protocol="application/pgp-signature"; micalg=PGP-SHA1 X-Archives-Salt: f59a4ced-0c93-42fa-aa43-a5d1264a87f3 X-Archives-Hash: ec3dd56680b52be13ba7fa5c433de16a --Sig_/_b=K=iShKCllidFROgIhmsZ Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Mon, 31 Mar 2008 07:36:52 +0100, Dirk Heinrichs wrote: > > That still means your keys are readable all the time, =20 >=20 > By root only, chmod 400 is your friend. But still readable. >=20 > > whereas mine=20 > > disappear long before the network comes up. =20 >=20 > So what? If somebody cracks into your box and gains root access, he > can't mount /boot and take the keys? That's right, because the keys aren't in /boot ;-) --=20 Neil Bothwick WITLAG: The delay between delivery and comprehension of a joke. --Sig_/_b=K=iShKCllidFROgIhmsZ Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iEYEARECAAYFAkfwnLIACgkQum4al0N1GQO6JwCgi7lRaVEeo2gqmT5cyEz/RnjB t/UAoL2owqCMYoRO8XOPgkqIkL5DX1s2 =YAl7 -----END PGP SIGNATURE----- --Sig_/_b=K=iShKCllidFROgIhmsZ-- -- gentoo-user@lists.gentoo.org mailing list