On Tue, 04 Sep 2012 22:45:07 +0200, Florian Philipp wrote:

> >> I just have to make sure to leave nothing private on root, /usr
> >> or /etc.  
> > 
> > Like your passwd and shadow files?

> *g*, good point. However, I'm willing to take the risk on just these
> two: passwd doesn't contain anything of considerable interest. shadow
> contains exactly two passwords, both as sha256-sums (or similar, did not
> really check). The passwords themselves are in excess of 90 bit entropy,
> depending on how you estimate it.
> 
> Most of the rest which might be of interest and is usually in /etc can
> be symlinked there from a safe location in /var.

I used to do that, but as the number of sensitive directories grew -
samba, wicd, etc. - I decided it was less hassle to set up an encrypted /
and forget about it.


-- 
Neil Bothwick

When you go to court you are putting yourself in the hands of 12 people
that were not smart enough to get out of jury duty.