Re: FAQ about encrypting harddrive using key on USB key?

---

• From: Ron Johnson <ron.l.johnson@xxxxxxx>
• Date: Sat, 08 Dec 2007 13:25:38 -0600

---

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/08/07 13:18, Peter Kay wrote:

On Dec 8, 2007 12:45 PM, Ron Johnson <ron.l.johnson@xxxxxxx> wrote:

[ I want to encrypt laptop, with key on USB drive]
Is there a different FAQ I should be using?

Thanks all, and I hope to soon join you in debian-land.

http://luks.endorphin.org/

Install cryptsetup and read /usr/share/doc/cryptsetup/CryptoRoot.HowTo.

Thanks, I'll check that out.

Slightly OT, but do you *really* need /boot, /usr, /bin, etc, to be
encrypted?

ISTM that only /home, /tmp & swap files/partitions (and /var?) need
be partitioned. That way, you could still boot the machine and do
maintenance if you misplaced your dongle.

Of course, if I lose all copies of the dongle, being able to do maintenance
isn't terribly useful... Besides, the truly paranoid understand that someone
could slip a keylogger into /usr/bin/perl! Ideally,

If They have physical access to the machine, then They can install a
physical keylogger.

- --
Ron Johnson, Jr.
Jefferson LA USA

"Your mistletoe is no match for my TOW missile." Santa-bot
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHWu+yS9HxQb37XmcRAsThAKCiQiE0MTw5FI3Fg1tm/fOZ2sXKOwCZARun
gaQHMEk5iUAQhqFO164/Em8=
=HKfp
-----END PGP SIGNATURE-----


--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

---

• References:
  • FAQ about encrypting harddrive using key on USB key?
    • From: Peter Kay
  • Re: FAQ about encrypting harddrive using key on USB key?
    • From: Ron Johnson
  • Re: FAQ about encrypting harddrive using key on USB key?
    • From: Peter Kay

• Prev by Date: Re: FAQ about encrypting harddrive using key on USB key?
• Next by Date: [OT] Service manual guide for acer 5100 5102 wlmi
• Previous by thread: Re: FAQ about encrypting harddrive using key on USB key?
• Next by thread: Re: FAQ about encrypting harddrive using key on USB key?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)] ... I booted a second etch computer which comes up to a gnome ... desktop, and hit alt-sysrq-i. ... It's pretty trivial for them to gain root access if they have physical access to the hardware. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". ... (Debian-User) Re: Magic SysRq [was Re: X ignores keyboard and mouse input, but shows cursor movement (etch)] ... (Or is there a security warning ... Frankly, if someone has physical access, a reboot is just about the ... absence of warnings or user documentation. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... (Debian-User) Re: FAQ about encrypting harddrive using key on USB key? ... and I hope to soon join you in debian-land. ... Of course, if I lose all copies of the dongle, being able to do maintenance ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... (Debian-User) Re: lost my root password, howto ? ... how can we encode filesystems? ... Either prevent _all_ physical access to ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ... (Debian-User) Bluetooth mouse not connecting using Lenny ... anymore. ... I have to remove my USB bluetooth ... dongle and put it back. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". ... (Debian-User)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Mailing-Lists  > Debian  > 2007-12