Search:  
Gentoo Wiki

HOWTO_Encrypt_the_swap_space_using_dm-crypt_and_baselayout

This article is part of the HOWTO series.
Installation Kernel & Hardware Networks Portage Software System X Server Gaming Non-x86 Emulators Misc
This article is part of the Security series.

Introduction

This article should allow you to encrypt your swap space using a relatively simple and straight-forward method (i.e. accessible to human beings), that is still secure for "normal" usage and recommended by the Official Gentoo Documentation.

Cryptography

For the time being, please follow the Gentoo Forums thread that triggered this article and the Official Documentation article:

Warning: "New" exploit found which makes encrypted swap (or any encrypted hdd for that matter) very vulnerable. Unplug power without proper shutdown, quickly boot up with exploit kernel, dump contents of ram to disk, find key, get at data! See: http://citp.princeton.edu/memory/. However do check this relevant discussion on the Genoo Mailing List, where users were somewhat skeptical on the "reality" of the threat.


This article is still a Stub. You can help Gentoo-Wiki by expanding it.

Retrieved from "http://www.gentoo-wiki.info/HOWTO_Encrypt_the_swap_space_using_dm-crypt_and_baselayout"

Last modified: Mon, 04 Aug 2008 09:07:00 +0000 Hits: 4,292