On 9/17/06, Wade Curry <[EMAIL PROTECTED]> wrote:
I think you misunderstood my question. I see a clear benefit to encrypted file systems in general. Specifically, encrypting the *root* filesystem seems rather useless to me.
No, I understood the question. I think that there is a benefit to encrypting the root filesystem. The problem is not so much one of reading as it is writing. I don't want to be able to boot into a LiveCD and be able to alter the contents of my hard disk, be it /tmp, /usr, /var, or whatever. Especially not /etc or /home. There's only a little that truly does not need to be encrypted, and you may as well encrypt the whole thing.
anything in any of my root partitions that is sensitive data. In fact, if you install Debian Sarge, you have a good snapshot of what is in my root partition without any of the hassle of cracking my machines.
Again, it's not the reading, but the writing. -todd -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
