Re: setting up partition before cryptsetup

From: Digby Tarvin <digbyt@xxxxxxx>
Date: Wed, 19 Jul 2006 17:37:10 +0100

On Wed, Jul 19, 2006 at 11:17:33PM +0700, Dave Patterson wrote:

* Digby Tarvin <digbyt@xxxxxxx> [2006-07-19 15:58:19 +0100]:

In my opinion it is more secure to keep confidential data in a
dedicated encrypted partition which is only initialised and mounted
when really needed. If you are really paranoid, you can remove your
network connection whenever the secred data is mounted.

If you have the entire system encrypted and mount everything at boot,
then your data is only safe with the computer is turned off. A hacker
who gains root has everything...

The flipside to that is the cracker that searches journals on journalled
filesystems for sensitive data (keys for encrypted partitions, even the
sensitive document itself).

A healthy dose of paranoia is in order here. Look at how you plan to
manage your encrypted data.

I'm not sure that I see how any of the sensitive data would find its way
into the journal of a an unencrypted filesystem? Unless of course
anyone were silly enough to copy stuff there...

Two extra caveats I neglected to mention is:
1. I create 'secure' users with home directories in the secure home
partition. When I access secure data, I mount the partition and
then have to log in as my secure alter-ego. This is very important
to ensure that your browser caches etc are also encrypted.

The secure users shouldn't have write access to any unencrypted
filesystem, including /tmp, to prevent inadvertant data compromise.

I use a swap backed memory based filesystem for /tmp - ramfs or tmpfs,
I can never remember which is which :-/

2. If the data is very sensitive, either encrypt your swap partition
or disable it when the secure partition is mounted.

Regards,
DigbyT
--
Digby R. S. Tarvin digbyt(at)digbyt.com
http://www.digbyt.com

--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

References:
- setting up partition before cryptsetup
  - From: anonymous
- Re: setting up partition before cryptsetup
  - From: Dave Patterson
- Re: setting up partition before cryptsetup
  - From: Digby Tarvin
- Re: setting up partition before cryptsetup
  - From: Dave Patterson

Prev by Date: Re: Union FS
Next by Date: Re: dma errors
Previous by thread: Re: setting up partition before cryptsetup
Next by thread: Re: setting up partition before cryptsetup
Index(es):
- Date
- Thread

Relevant Pages

Re: secure a directory
... (e.g. your /home partition). ... then encryption won't secure your data anyway. ... which encapsulates the underlying physical block device. ... it would be good to encrypt it as well, otherwise your data may end up ...
(comp.os.linux.security)
HOW i CAN open encrypted files or copy them
... Help Help Help ... Encrypt and secure my data in partition D i.e. no one ... The problem is that I have formatted partition C and re ...
(microsoft.public.windowsxp.security_admin)
How to secure pendrive ?
... I like to secure my 8GB pendrive. ... I like to make two 4GB partitons, one for puppy linux and one as left to use ... But I like to encrypt the partition having puppy so that it is ...
(Security-Basics)
RE: local admin account password
... > encrypt the database and create alerts in the event of unsuccessful ... >> no more recovery console and don't think cached logins will work. ... >> The DB file would be encrypted with EFS so only the limited user SQL ... >> itself doesn't really need to be secure as the authentication is based ...
(Focus-Microsoft)
Re: Encrypting Linux partitions
... On a new Linux install of SuSE 10.0 x86_64 machine, ... partition as I intend to mkswap a file in the root partition. ... When I try to encrypt the root partition, ... The only things which need to be unencrypted are the boot loader, ...
(comp.os.linux.misc)