Re: [tor-relays] cryptsetup some folders

2016-10-26 Thread diffusae
Your "draft" looks very good. I'm sure, that it will help. Thanks a lot On 26.10.2016 02:01, Mirimir wrote: > On 10/25/2016 05:40 PM, teor wrote: >> >>> On 26 Oct. 2016, at 10:31, Mirimir wrote: >>> Any particular reason to let the mailing list know you have useful

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread teor
> On 26 Oct. 2016, at 10:31, Mirimir wrote: > >> Any particular reason to let the mailing list know you have useful >> information but not share it here and make it available for future >> list archive searches? ;-) > > I'm assuming that the list doesn't accept attachments

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Mirimir
On 10/25/2016 03:39 AM, Ralph Seichter wrote: > On 25.10.2016 09:58, Mirimir wrote: > >> OK, I've emailed you. > > Any particular reason to let the mailing list know you have useful > information but not share it here and make it available for future > list archive searches? ;-) I'm assuming

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread diffusae
I am interested too. It would be nice, if you can share it. Thanks a lot On 25.10.2016 08:49, Petrusko wrote: > Absolutely interested ! with pleasure :) > Will it be a link, or a file...? if you prefer sending it directly to > this mail address... > > Thx in advance ;) > > > Mirimir : >> I

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Petrusko
Right, it's so easy and quick to duplicate a SD card with this hardware, by only unplugging it from the board... If it's not stored under your bed, it can be useful :p And 2nd, it can be a cool challenge to make it working ? To understand how those security softwares and how to config them nicely

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread teor
> On 25 Oct. 2016, at 21:16, Toralf Förster wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > On 10/25/2016 12:03 PM, Duncan Guthrie wrote: >> >> Having it encrypted also makes remote management an absolute pain. > Depends on - an encrypted ext4fs needs

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Toralf Förster
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 10/25/2016 12:03 PM, Duncan Guthrie wrote: > > Having it encrypted also makes remote management an absolute pain. Depends on - an encrypted ext4fs needs just to be decrypted after boot as I tried in [1]. And the use case is to avoid that the

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Duncan Guthrie
Hi folks, I am not sure it is more secure. What are we trying to protect here? As long as the relay is running,it is unencrypted. Disk encryption only prevents physical access - are you at risk of this? At any rate, the relay shouldn't be storing personal data. Having it encrypted also

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Ralph Seichter
On 25.10.2016 09:58, Mirimir wrote: > OK, I've emailed you. Any particular reason to let the mailing list know you have useful information but not share it here and make it available for future list archive searches? ;-) -Ralph ___ tor-relays mailing

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Mirimir
On 10/25/2016 12:49 AM, Petrusko wrote: > Absolutely interested ! with pleasure :) > Will it be a link, or a file...? if you prefer sending it directly to > this mail address... > > Thx in advance ;) OK, I've emailed you. > Mirimir : >> I have a how-to guide, if you're interested. > > > >

Re: [tor-relays] cryptsetup some folders

2016-10-25 Thread Petrusko
Absolutely interested ! with pleasure :) Will it be a link, or a file...? if you prefer sending it directly to this mail address... Thx in advance ;) Mirimir : > I have a how-to guide, if you're interested. -- Petrusko EBE23AE5 signature.asc Description: OpenPGP digital signature

Re: [tor-relays] cryptsetup some folders

2016-10-24 Thread Mirimir
On 10/24/2016 04:04 PM, Petrusko wrote: > Many thx for your contribution, thx to you 2 :) > > I was thinking too about the full disk encryption. > No problem to backup/restore current files. > > Sadly Raspbian, and many others OS for the RPi, have not many options > like x86 when you set up the

Re: [tor-relays] cryptsetup some folders

2016-10-24 Thread Petrusko
Many thx for your contribution, thx to you 2 :) I was thinking too about the full disk encryption. No problem to backup/restore current files. Sadly Raspbian, and many others OS for the RPi, have not many options like x86 when you set up the system. That's why it can be hard to understand how to

Re: [tor-relays] cryptsetup some folders

2016-10-24 Thread diffusae
On 24.10.2016 09:53, Petrusko wrote: > Any suggestions and master's thoughts are welcome :) :-) Yes, why not use a full disk encryption? You could encrypt the root partition. I know, it's harder to do this on a running system and Raspbian doesn't offer you encryption within setup. The best

Re: [tor-relays] cryptsetup some folders

2016-10-24 Thread Toralf Förster
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 10/24/2016 09:53 AM, Petrusko wrote: > Any suggestions and master's thoughts are welcome :) I played few weeks ago with folder based encryption at an EXT4FS, but gave up - it won't work reliable here (hardened stable Gentoo Linux). But maybe

[tor-relays] cryptsetup some folders

2016-10-24 Thread Petrusko
Hey all, I'm planning to customise a RPi with Raspbian already running, and using cryptsetup (LUKS) to have a partition more secure for some reasons... So the goal is to move some existing sensitive folders to this new encrypted partition. Some sym-links will be used for those directories. About