[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2

To: Michel Bouissou <michel@bouissou.net>
Subject: Re: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
From: Jari Ruusu <jari.ruusu@pp.inet.fi>
Date: Sun, 07 Apr 2002 20:47:18 +0300
CC: vdanen@mandrakesoft.com, warly@mandrakesoft.com,linux-crypto@nl.linux.org, pplf <pplf@wanadoo.fr>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:listar@nl.linux.org?Subject=help>
List-owner: <mailto:riel@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Listar version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Original-Recipient: rfc822;linux-crypto-archive@nl.linux.org
References: <200204071810.04555@totor.bouissou.net>
Sender: linux-crypto-bounce@nl.linux.org

Michel Bouissou wrote:
> Mandrake 8.2 comes with a kernel RPM including loop-aes.
> 
> It is supposed to be able to do a lot of useful things with it, including
> automatically encrypt swap partitions if wanted.
[snip]
> Feel free to give me your feedback and comments.

Not directly related to Mandrake init scripts, but next version of loop-AES
will setup encrypted swap _without_ changes to init scripts. All user needs
to do is to add "loop=/dev/loop?" and "encryption=AES128" options to swap
lines in /etc/fstab and "swapon -a" and "swapoff -a" will take care of all
encrypted swap setup work.

Example of /etc/fstab line:
 /dev/hda666   none   swap   sw,loop=/dev/loop6,encryption=AES128   0   0
                                ^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^
I have attached new util-linux patches if someone wants to try them.
Compile and install like this:

    bzip2 -d -c util-linux-2.11o.tar.bz2 | tar xvf -
    cd util-linux-2.11o
    patch -p1 <../util-linux-2.11o-1.diff
    patch -p1 <../util-linux-2.11o-2.diff
    ./configure
    make SUBDIRS="lib mount"
    cd mount
    install -m 4755 -o root mount umount /bin
    install -m 755 losetup swapon /sbin
    rm -f /sbin/swapoff && ( cd /sbin && ln -s swapon swapoff )
    rm -f /usr/man/man8/{mount,umount,losetup,swapon,swapoff}.8.gz
    install -m 644 mount.8 umount.8 losetup.8 swapon.8 swapoff.8 /usr/man/man8
    rm -f /usr/man/man5/fstab.5.gz
    install -m 644 fstab.5 /usr/man/man5
    mandb

Regards,
Jari Ruusu <jari.ruusu@pp.inet.fi>

util-linux-2.11o-1.diff.gz

-----BEGIN PGP MESSAGE-----
Version: 2.6.3ia
Comment: http://loop-aes.sourceforge.net/PGP-public-key.asc

iQCVAwUAPLCB5jMKg0M6Ig9RAQFzGwP+Nn3wYZiMVNVul+JUOz8STaVpnJKB/PMw
hxuUthuQ4E+4nLSlBfAsBwzG32QQ/3r6u4j84j9jLGRbdgmsEWldLGSEcYuVPGjm
9r7WAnh/pvCzi7nM39zQwuoIfRnzkj9a0IFUr+oy9ZCVRsqsTU9r62UyydDcQK9S
VwgVQ1QaQRM=
=84T3
-----END PGP MESSAGE-----

util-linux-2.11o-2.diff.gz

-----BEGIN PGP MESSAGE-----
Version: 2.6.3ia
Comment: http://loop-aes.sourceforge.net/PGP-public-key.asc

iQCVAwUAPLCB8jMKg0M6Ig9RAQHQiAP+Id0xpxLDFEI5o0C3R+08uFY+fTAHjzaw
YZ+V6GMmL7U39QnCRpXRHI+bTdp0koLm7gwDvRfYrVZ/xQRi3AtbdbSPaI6iY6jp
Rcr3dUU5yqQjJ/y3qpo8YEmuJ9+J3SAljpj8+XVjfmG4bCpAfnpG/PRpcb6kLHCJ
NejFncXaO6I=
=HgHn
-----END PGP MESSAGE-----

Follow-Ups:
- RE: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
  - From: "IT3 Stuart Blake Tener, USNR-R" <stuart@bh90210.net>
- Re: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
  - From: Michel Bouissou <michel@bouissou.net>

References:
- SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
  - From: Michel Bouissou <michel@bouissou.net>

Prev by Date: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
Next by Date: RE: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
Prev by thread: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
Next by thread: RE: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2
Index(es):
- Date
- Thread