RE: Automatically encrypting data files in a partition.
Thanks for that Lowell! Looks like it might work. I will have a play with it! Cheers, Paul Hamilton -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Lowell Gilbert Sent: Saturday, 22 November 2003 9:28 AM To: Paul Hamilton Cc: Freebsd-Questions Subject: Re: Automatically encrypting data files in a partition. Paul Hamilton [EMAIL PROTECTED] writes: I need a way to store different directory trees and files with different encryption keys, i.e.. /data/mars /data/mars/one /data/mars/two etc all are encrypted with one key and /data/venus /data/venus/one /data/venus/two etc, would have a different key. Ideally, the directory structure, and file names wouldn't be encrypted. /data is an independent partition. Some of these files, could be MS Office data files, others might be MS program *.exe files etc. It would be nice if this happened at the filesystem level, i.e., I would enter a key and the root dir name for each 'data tree' into the config file, reload the config file into the 'encryption filesystem program' and all would be sweet ;-) The closest thing I know of is cfs (in the ports). It encrypts some of the directory structures as well, which is usually desirable because they can contain secret information as well (think of a file named CompanyX_Merge_Plans.doc). I don't know if it's capable of handling passphrases centrally as opposed to on a user-session basis, but if so, you would need someone with the password present every time you booted the machine. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Automatically encrypting data files in a partition.
Paul Hamilton [EMAIL PROTECTED] writes: I need a way to store different directory trees and files with different encryption keys, i.e.. /data/mars /data/mars/one /data/mars/two etc all are encrypted with one key and /data/venus /data/venus/one /data/venus/two etc, would have a different key. Ideally, the directory structure, and file names wouldn't be encrypted. /data is an independent partition. Some of these files, could be MS Office data files, others might be MS program *.exe files etc. It would be nice if this happened at the filesystem level, i.e., I would enter a key and the root dir name for each 'data tree' into the config file, reload the config file into the 'encryption filesystem program' and all would be sweet ;-) The closest thing I know of is cfs (in the ports). It encrypts some of the directory structures as well, which is usually desirable because they can contain secret information as well (think of a file named CompanyX_Merge_Plans.doc). I don't know if it's capable of handling passphrases centrally as opposed to on a user-session basis, but if so, you would need someone with the password present every time you booted the machine. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Automatically encrypting data files in a partition.
Hi, I need a way to store different directory trees and files with different encryption keys, i.e.. /data/mars /data/mars/one /data/mars/two etc all are encrypted with one key and /data/venus /data/venus/one /data/venus/two etc, would have a different key. Ideally, the directory structure, and file names wouldn't be encrypted. /data is an independent partition. Some of these files, could be MS Office data files, others might be MS program *.exe files etc. It would be nice if this happened at the filesystem level, i.e., I would enter a key and the root dir name for each 'data tree' into the config file, reload the config file into the 'encryption filesystem program' and all would be sweet ;-) Ponderingly yours, Paul Hamilton ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]