Re: [Cooker] Crypto with fs

[Pierre BETOUIN]

Le mar 26/11/2002 � 23:14, Sascha Noyes a �crit :
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> You can encrypt a filesystem in harddrake. click "toggle to expert mode", and 
> click on options. Unfortunately the password has to be at least 20 character. 
> Sorry, but i just can't put important data on a filesystem encrypted with 20 
> characters, my memory is just not that good ;-)
> This has been implemented since 8.1 I think. I have tried every possible way 
> to get the mandrake guys to change the minimum characters down to something 
> sane:
> emailed cooker list during devel process of 8.1 multiple times
> emailed cooker list during devel process of 9.0 multiple times
> submitted it to mandrake-expert
> submitted a patch to mandrake bugzilla,
It would be great but a passphrase too short can have strong problem on
algorithms... An algo is sometimes useless if the passphrase is too
short.
We can find the same problem with some kinds of keys which have not been
clearly created.

> 
> and... still nothing
> I guess nobody except me is really interested in it
No, don't be depressed ! ;) I'm very interested in it too ! :>

> 
> /rant
> 
> Sascha Noyes
Have you tested cryptoapi or loop-aes?
We could propose a RPM of them?
Is mdk fond of cryptography? ;)

        Pierre

> 
> On Tuesday 26 November 2002 03:07 pm, Pierre BETOUIN wrote:
> > Is there an equivalent of a patch in order to crypt the fs in RPM for
> > mdk?
> > I'd like to use something like cryptoapi or loop-aes but i've to patch
> > the kernel before...
> > Laptops users could be very interested in this...
> >
> >     Here is some docs about it :
> > http://marc.theaimsgroup.com/?l=linux-crypto&r=1&w=2
> > http://www.kerneli.org/howto/index.php
> > http://hints.us.linuxfromscratch.org/hints/cryptoapi.txt
> >
> >
> > What do you think of this idea? 8.2 release didn't manage it?
> > I could be proposed as an option (in "expert" mode).
> 
> - -- 
> Please encrypt all correspondence.
> PGP key available from:
> http://individual.utoronto.ca/noyes/snoyes.asc
> - --
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
> 
> iD8DBQE94/JjgzJdfX+cTW8RAhzLAJ40yVBZoufapSDvidIYGngow2vvTQCffal1
> MeXBpI8ikHO0ZirM+rbiF4w=
> =Upmv
> -----END PGP SIGNATURE-----
-- 
Pierre BETOUIN <[EMAIL PROTECTED]>

signature.asc
Description: PGP signature