[reformatted]
Pavel Machek wrote:
> Hi! What about doing it right? Encrypt it with symmetric cypher
> and store key in suspend header. That way key is removed automagically
> while fixing signatures. No need to clear anythink.
Good idea. I'll have a look though it will take a while (busy with my job).
> OTOH we may want to dm-crypt whole swap partition.
This would leave the problem that the in-kernel data would be accessible
on the swap device after resume.
> You could still store key in header... --p
Which is the good idea from step one above.
>
> -- pavel. Sent from mobile phone. Sorry for poor formatting.
The only remark I do have here is that swsusp would then depend on
crypto so the swsusp encryption should be a config option.
--
Andreas Steinmetz SPAMmers use [email protected]
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
