[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: encrypting swap (was Re: TEST)

To: kernel-audit@nl.linux.org
Subject: Re: encrypting swap (was Re: TEST)
From: Denis Ducamp <Denis.Ducamp@hsc.fr>
Date: Tue, 8 Aug 2000 15:27:30 +0200
In-Reply-To: <Pine.LNX.4.21.0008071439450.20543-100000@linux.home>; from mistral@stevenson.zetnet.co.uk on Mon, Aug 07, 2000 at 02:41:56PM +0000
References: <Pine.LNX.4.21.0008070905570.7070-100000@yinyang.hjsoft.com> <Pine.LNX.4.21.0008071439450.20543-100000@linux.home>
Sender: owner-kernel-audit@nl.linux.org

On Mon, Aug 07, 2000 at 02:41:56PM +0000, James Stevenson wrote:
> 
> Hi
> 
> one of the things that i though was what is the point in encrypting the
> swap file under linux i do not see any benifits
> it would be slower
> no added security (/proc/kcore ?) unless the person who set the system
> up has left the swap world readable (duh) if you are root you can just
> poke around the processes memory anyway

That has been done under OpenBSD because the author stopped his system and
found very interresting informations in the swap.

That exist against people physically stealing hard drives with swap.

Denis.

-- 
Denis.Ducamp@hsc.fr -- Hervé Schauer Consultants -- http://www.hsc.fr/

Kernel-audit:  discussion list for security and the linux kernel
Archive:       http://mail.nl.linux.org/kernel-audit/

References:
- encrypting swap (was Re: TEST)
  - From: "Mr. Shannon Aldinger" <god@yinyang.hjsoft.com>
- Re: encrypting swap (was Re: TEST)
  - From: James Stevenson <mistral@stevenson.zetnet.co.uk>
- Re: encrypting swap (was Re: TEST)
  - From: James Stevenson <mistral@stevenson.zetnet.co.uk>

Prev by Date: Re: TEST
Next by Date: RE: encrypting swap conversation
Prev by thread: Re: encrypting swap (was Re: TEST)
Next by thread: Re: encrypting swap (was Re: TEST)
Index(es):
- Date
- Thread