Package: cryptsetup Version: 20050111-3 The packages includes the file /usr/share/doc/cryptsetup/README.html which was obviously downloaded from http://www.saout.de/misc/dm-crypt/
The web document, however, is newer than the version included in the package. In particular, it mentions how to avoid the watermark attack, which can be used against dm-crypt (and cryptoloop) in its default configuration. (See http://mareichelt.de/pub/notmine/diskenc.pdf for a paper discussing this vulnerability ). This information is important to avoid the vulnerability. The README.html should be updated to the newest version (possibly minus any changes which only apply to the latest version of cryptsetup). -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
