From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id E8AB31382C5 for ; Tue, 9 Jun 2020 20:24:18 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 64FBFE093D; Tue, 9 Jun 2020 20:24:11 +0000 (UTC) Received: from mail-oo1-xc29.google.com (mail-oo1-xc29.google.com [IPv6:2607:f8b0:4864:20::c29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 22C87E092B for ; Tue, 9 Jun 2020 20:24:10 +0000 (UTC) Received: by mail-oo1-xc29.google.com with SMTP id z145so12466ooa.13 for ; Tue, 09 Jun 2020 13:24:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:openpgp:autocrypt:message-id:date :user-agent:mime-version:in-reply-to; bh=ebv+C7qWfysyAlue0dCAyeeiNSSP6rs8ipXb+Hk1Ons=; b=SElVTfmqX5D98qHZgES4JRQjeCll1lXHutu5lp0hT5PV6Wg5JspBi3+bRz7PXo9mwK 0ZVzg6WeruZOpJAho8bHVG9CVRB19Mmy2Ek/suyQPomKd3UhPkRsDeqZN40vfnfvBlip Xy+nl8K5KjLpudGj5Sm3FLK1AGFISJ+7GdoUgkeJWduWdKjeDZjh7NoEVAyy9B9EFzbA ooKL/fvTbVQkXFSnBtP1DYfH1dAZKRPuLqdvGPYyUiWknqn/3u6EEC5xaxtXQFInjl7L nVtgxysRXT9l0fooE85bSx0BtZd7E5looUS/gE4Or5k+ZBB06p0BjoVjtiAGdfAB3tti qe1w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:openpgp:autocrypt :message-id:date:user-agent:mime-version:in-reply-to; bh=ebv+C7qWfysyAlue0dCAyeeiNSSP6rs8ipXb+Hk1Ons=; b=ZpBifFXRc7nqGR1lGlPbILVW0qrqTikS4PJHh1fLZjBFmfk+bXJziKhr1eXyiDghMF 1vbNV1cTEySq6x9DXOY7xErNun1D5tKOE12LDcM7eVbvcZD6KqSVdrI10PQbkhguFt6x mL6Ftkd3MU+CJ9tJqo5e6xceDTzTo/fzcaftFVzgK40XZAZ3Xb+Mur/oFF2mpbsih1xy 0izHrQoJAVBAf4DKoYrtHED7bpiuLN2mk8MSLS2iX8LEhEQyKnDn8eCgnQdmfX3HPHW8 vKdj9EaUI6bfaRHyOe+XJGAf65r6jyDpgHLQXVHXTC9JGi/1O/6tjCTY6qUFS99XqR5D /Llw== X-Gm-Message-State: AOAM532c2hHdMPVXAJCwS3HmM5jvFRxFD4PNW9ce7XVPRTgDlcktskML uwh4aIIHIRlmxHE3lVSPpss= X-Google-Smtp-Source: ABdhPJzaIil/+BkKUMrEgIAw5LEFCLquTygKWvUy/MrxvuuQDLn0z9UPSIqkIqAVkAhASKBZPloLPQ== X-Received: by 2002:a4a:c806:: with SMTP id s6mr20925693ooq.19.1591734250184; Tue, 09 Jun 2020 13:24:10 -0700 (PDT) Received: from [192.168.0.100] (adsl-074-188-241-018.sip.asm.bellsouth.net. [74.188.241.18]) by smtp.gmail.com with ESMTPSA id s25sm2402368otg.67.2020.06.09.13.24.08 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 09 Jun 2020 13:24:09 -0700 (PDT) Subject: Re: [gentoo-user] Encrypting a hard drive's data. Best method. To: gentoo-user@lists.gentoo.org References: <7e55092b-1914-da09-cb33-25aea63d2b22@gmail.com> <6a9ae564-14be-aa10-e0d3-d50fd82e3e3b@gmail.com> <7e2ee8c9-7956-39a4-e31b-6a3f40d08da9@gmail.com> <318abc11-bb8b-dd8c-5ec6-734c9111dac2@youngman.org.uk> <4cd4f50c-31cc-2507-4219-b596e57318d7@youngman.org.uk> From: Dale Openpgp: preference=signencrypt Autocrypt: addr=rdalek1967@gmail.com; prefer-encrypt=mutual; keydata= mQINBFxc7MgBEAC+zrgEdqJJiDe/UDAB+ScmferXWfJTVjbVT2T4DQ7jiLrgP9aNUo1HioNF mrU3JPOCR32gvZyTbY1+niO5+VSo/+pSqQ785h6ZDj1klMkrg6tEzGnf2MNBpBj4houZwxQ+ WDKKTg2M9F+lv8wTIdR/JQn+hSviktLMtrghQlyLhpapsLXWLA6gMFebpQYwxUwemvan8ddX lQvJe9FGyFYvBi0dp1gl10F2O+DVZJxvX8xkX+yImVlhVJiC31gXHRcj+Qlo7gprlU7TIieF Uow6/ZvYKJ26pztVdFCg5w0rMJkF/x8Zd4A6wnuptiAPmWaQ1+YKgYDonbDUgwqFSx5/lN5z DGZ4LlioxeUTTPVvZsqBIeDz6jNFA583OYbo1/S26dqrvTFf2DKlsvoDpVfAhNlwJPjoixs0 X3FNqPv+M10n4kq5Iz7Q9E3O4s/nfFIYGocEslVka7zZPkXSaHbsn+KJlY8XV6qxtCEdh0/V XX1+1aU2J74M0JikWhpwxTZ1dP5aOyWSPPEgFFIRW6xwwC02SoRH9a7mggfGYp/YjPlONNaT SCL8sgRfvmq3D0XTbLyTjSbExxkfKDmbePQagawDE3TlI/oivHf1JaAcbwMb3LZuU4TGcOIl 5D+x7q0MUIeCop0ZFOwAnqW3AVVNvsBkv2KN+IHJryWAf0/iMQARAQABtBtEYWxlIDxyZGFs ZWsxOTY3QGdtYWlsLmNvbT6JAk4EEwEIADgWIQTZ7suruPBaS60bCYXvEM/XWu+ZnAUCXFzs yAIbIwULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRDvEM/XWu+ZnN+7D/4/1dNG4aCz0+v+ 0dcjV5tY1feYEWCdHKyDzxWBxlCpd/0NPRQeNY4VMjbCl/sq7GkXi/c2SbfWDQ5BQRkkExG1 pSwuXSIehGok/4fpTi3HDAguRvzdCqlKPt7me05FyiC/WnpY5GOlJ3ruGw2qABv/RmV2q5b/ tkq7h1y1f16DTNr3/nsj8HzHcrHdXdL4kaYChSOe/dbQR9Stqak7eMyR+iwvrJMNF/CGl70P 2x5ybsXMDzRVOqNcpa5ZdhEMTVh6+vC1SOmm1BFMF8XCqBEvBbcHWDQmGYTdNCsS/ADm8CBl gvjJgLdIsAzoMu4WHQDFnzXAoArqFWgAf53isOS4AWrv29tF9b8Aa1vb7h5JEa+ArcMsA6Gl X38+GY6WXXaxKI9n3PTCWu9tPGnRh7mABjnwEosDDqmzw8aTAYECb3avDuGY2rmcjgh4H6RE w08d63j1T4d5J9wlm4TGtW/VHgbUFkATEdH3Acl/EjFiyqTiX7p8kU6Reu5enIkogA93xoQh Rmy7ZiST/5LN+ZkaOdyjIw0L+5KalslN9SKt809YxgJ6kPo657LNTFPiFvFA46/SEWcBYrzq Xk0wEW0gBRWf+BqN0qRhU0/EQ+QfRdLLFg2xtUePwlheYLXxfyDLrdCCOLWYpkzbjCZHLS4u 69smbvR9S9KBDNzJybxEWrkCDQRcXOzIARAA5IGRWTqaM44IJgBYghZg2fGj0Am7KWPhE7V7 T/EEe7vVSUEFqHtlHzI4ZK6Q0AZ9uAEjE8IJIQ7KoTjzNqAtabP0vp3s0szgtJlsZ+8vGKlQ my7fvzSrdoQL0Xn7CEwJYFXJ1EMUcYIQeoHG1cUAaXx73k9BFbjwjnUeMrqlV/ZovQlg7duW nESfQ7HZu5NrtYyY3jPMUouxiO9WQPh+IHxZbt1absF2VcvRAymD32RxGvMPbw6ChMRD/p9O 4PH7M5rXaxr78NXQX9E48vrI00f1cYb9NSN1HnSV8cW3jKObVjdBk6jPQwrMvdpgdQhUB9aZ HS/9mC9mmAgiXKyCpzXe7FPB6QznSfn4GIaC/luy1e6SLUkJhRK/niB+gq+Mfxg2zXNuDUTI cMGmpDCp3kgUoorkaltk8RW09io95BkXrGhcDNuSGZfAParBc7RXyYpbIcax8St7tEAd2oFh 4seYOPUlzuhGrPpqR/91wrFc4E1260GKauSr4UhMJv6tygBwyC0mmBMKi+ZXw6ZdZxA5fg7y 35P3TILjznCXXTDgRHq9A3NknKRMcgFacX6eIhANkMFo6oJVjuEgy1dvu1wFfDq7c+i8GAHu L4pYzyXYu6PporlNNU0xSwdVgzM/uuK0lt+UxCimgC+YR3IezgDcbfudb7h9dGIwL+bbPL0A EQEAAYkCNgQYAQgAIBYhBNnuy6u48FpLrRsJhe8Qz9da75mcBQJcXOzIAhsMAAoJEO8Qz9da 75mcXZ4P/1YXgWDZek7mhzrf6uaQzMxa92P89HeWz4PlgB/32symeEFAV04WazzBZffI8AYY rGA1Xmu/2VaB9+FOODyKhUWBc2UL0NRWBk6POwboyTdKlclmpixaN9zLcBt0YLejoRfN1B/5 aQf9/lUDZMnAiCyz0FgeqEMUshldmwWC35RqnjrCbbuk2vIqSH6BLDIXU6jQrLHE1DF0ai41 wLtQFAFXPhn45n0ZwYhVs4Z32z4sjXrIvgBgCaXa4HM+L1Klne0KiNM8ReFTTpTE0SgyDOSZ O3MOa2n77i6JbVtsbiFYnNeP3J9S/l3jevGpZEtNQOKrIm1MW8jGuHWtsDeMkT/mCcSodlkt PxIo+mMK9GpGvG2hW80LiohqNfUbNwAmr3blOYY4URPXPRnEnPs4pmTmL5owjw2dkg145i9I D42Tq+XZ6YtWt3SGzGbAYow6XwTwZ5NFAzV9UQuCGrDw4KWan6O6Z+VIYWsn0UMZlu1Obxna aocofkaUCbISK26kImuD1aA8juSHC18Qv1xUage6/UakbSxyDtACqt6hOVFKX3IA59ApdNRT +2x3iCmlvF9MJsGgFq6IpqL+Fk7iWV8Kjbz0wQOId6N9+JdQh3LrLaS7a1PowUm1z9DK5/O0 Yg+gpDnEOOFI7WM5u7a7FSM2Z/LXGVwel/0eWvLk9tN6 Message-ID: <43dfb4b5-97f6-96e6-046c-17c9927a6c0b@gmail.com> Date: Tue, 9 Jun 2020 15:24:07 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0 SeaMonkey/2.53.2 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 In-Reply-To: <4cd4f50c-31cc-2507-4219-b596e57318d7@youngman.org.uk> Content-Type: multipart/alternative; boundary="------------540984819D8D30C8C4BE19CF" X-Archives-Salt: a440bb5b-7c1b-4dfc-9c0e-48d5e3359507 X-Archives-Hash: eb835c31426c0e087ecb31331b148e1a This is a multi-part message in MIME format. --------------540984819D8D30C8C4BE19CF Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit antlists wrote: > On 07/06/2020 10:07, antlists wrote: >> I think it was LWN, there was an interesting article on crypto recently. > > https://lwn.net/Articles/821544/ > > Cheers, > Wol > > Looks like they are getting ready to toss sha1 overboard.  If it is not secure, they should.  At least most people who should know, already know it is not secure.  I didn't have the details but I knew something was hacked and asked to be sure.  I ended up using a AES one.  I did set up, using zulucrypt at the moment, to encrypt a 3TB external hard drive.  So far, it is working fine.  I've closed it a few times and opened it a few times.  The one thing I have not figure out yet, about to look into it, how to mount it to a place I pick.  It's likely a setting I haven't noticed yet but I'll find it.  Still not ready to even think of doing /home yet tho.  That's a doozy.  I guess first I'd have to move everything off the drives it's currently on, encrypt that drive and then move everything back.  Another thing, having a secure password that is easy to type and remember but can't be guesses.  Anyone remember the thread when I came up with a password for PGP and LastPass a year or so ago???  It took me a month to accomplish that but it is a good one.  Then I got a cell phone.  Easy to type on the keyboard, not so much on the cell phone tho.  Still, it works well.  It is a good one.  Good luck to anyone trying to guess it or even hack it.  lol  I wish my other drive would have worked.  I'd like to be able to compare things.  They are both the same brand and size.  Likely even the same model.  But it has some serious issues.  Even smartctrl was having trouble chatting with the drive.  That's bad.  May redo the drive but with command line tools this go around.  Just for giggles.  Thanks again. Dale :-)  :-)  --------------540984819D8D30C8C4BE19CF Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit
antlists wrote:
On 07/06/2020 10:07, antlists wrote:
I think it was LWN, there was an interesting article on crypto recently.

https://lwn.net/Articles/821544/

Cheers,
Wol




Looks like they are getting ready to toss sha1 overboard.  If it is not secure, they should.  At least most people who should know, already know it is not secure.  I didn't have the details but I knew something was hacked and asked to be sure.  I ended up using a AES one.  I did set up, using zulucrypt at the moment, to encrypt a 3TB external hard drive.  So far, it is working fine.  I've closed it a few times and opened it a few times. 

The one thing I have not figure out yet, about to look into it, how to mount it to a place I pick.  It's likely a setting I haven't noticed yet but I'll find it.  Still not ready to even think of doing /home yet tho.  That's a doozy.  I guess first I'd have to move everything off the drives it's currently on, encrypt that drive and then move everything back.  Another thing, having a secure password that is easy to type and remember but can't be guesses.  Anyone remember the thread when I came up with a password for PGP and LastPass a year or so ago???  It took me a month to accomplish that but it is a good one.  Then I got a cell phone.  Easy to type on the keyboard, not so much on the cell phone tho.  Still, it works well.  It is a good one.  Good luck to anyone trying to guess it or even hack it.  lol 

I wish my other drive would have worked.  I'd like to be able to compare things.  They are both the same brand and size.  Likely even the same model.  But it has some serious issues.  Even smartctrl was having trouble chatting with the drive.  That's bad. 

May redo the drive but with command line tools this go around.  Just for giggles. 

Thanks again.

Dale

:-)  :-) 
--------------540984819D8D30C8C4BE19CF--