-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09/11/06 12:38, enediel gonzalez wrote: >> > - -- [snip] > But my biggest is the following question. > Is it possible to create a full encrypted filesystem? > for example > http://www.debian-administration.org/articles/428 > > I'm going to test this installation, but in this case the best option is > to have a usb key, but still there is a problem, at the server location, > they don't need to have anything like that to start the server.
If it were *me*, I would only encrypt the /home and "data" (if any) partition(s). However, "physical security" and "USB port" don't play well together. However, if you disable Ctrl-Alt-Del, put that BIOS password on, don't install sudo, etc, then *maybe* it would be possible to expose a USB port for use by an encrypted filesystem. However, then it is vulnerable to vandalism. What is the purpose of this black box? How public will this "untrusted location" be? - -- Ron Johnson, Jr. Jefferson LA USA Is "common sense" really valid? For example, it is "common sense" to white-power racists that whites are superior to blacks, and that those with brown skins are mud people. However, that "common sense" is obviously wrong. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFBac1S9HxQb37XmcRAlbSAKDu8cNmSSOgXA4xe+8I9tzKw70ZbQCg7DLK pBCXN0oBQkwkP9hcnIOkuzI= =BVdP -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
