Mail List wrote on Thursday 02 August 2007: > > The file /etc/init.d/halt calls /sbin/halt.local if it exists. But it > > does so rather late in the shutdown process - maybe too late for your > > needs... > * Thank you very much - this may be just what I need * > > For my needs this will be perfect - I have encrypted /home but I did > not have luck getting encrypted / like my ubuntu friends - so I need to > cryptographically clean /tmp and /var/tmp on shutdown on my laptop for > security purposes. I plan to use a script which uses shred and tmpwatch > to clear them out. Hm... I suppose it *is* too late then. The halt service tries to unmount all filesystem before halt.local is executed. If your problem is only encrypted /tmp (and maybe swap?) then crypttab might be just what you want. (man crypttab) Crypttab is evaluated at startup by cryptsetup and allows you dynamically setup an ecrypted /tmp and swap - and maybe /var/tmp. You might find http://www.familie-prokop.de/cryptofs/index_en.html helpful. If crypttab is not applicable for you, then you will find 2 shell scripts (cryptoswap, cryptotmp) at the bottom of this page. They can act as system services and mount/unmount encrypted partition on startup/shutdown. -- bye, Adalbert To live is always desirable. -- Eleen the Capellan, "Friday's Child", stardate 3498.9
