[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ACPI] Re: ACPI + loop(AES) + swsusp

To: Jari Ruusu <jari.ruusu@pp.inet.fi>
Subject: Re: [ACPI] Re: ACPI + loop(AES) + swsusp
From: Pavel Machek <pavel@suse.cz>
Date: Fri, 2 Nov 2001 13:56:18 +0000
Cc: "John J. Lee" <jjl@pobox.com>, Robert Stark <rstark@ipp.mpg.de>,Linux Mailinglists <acpi-devel@lists.sourceforge.net>,linux-crypto@nl.linux.org, swsusp@lister.fornax.hu,Sean Neakums <sneakums@zork.net>
In-Reply-To: <3D612050.F980C545@pp.inet.fi>; from jari.ruusu@pp.inet.fi on Mon, Aug 19, 2002 at 07:44:00PM +0300
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:listar@nl.linux.org?Subject=help>
List-owner: <mailto:riel@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Listar version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Original-Recipient: rfc822;linux-crypto-archive@nl.linux.org
References: <Pine.SOL.4.44.0208181454300.2717-100000@mimosa.csv.warwick.ac.uk> <3D612050.F980C545@pp.inet.fi>
Sender: linux-crypto-bounce@nl.linux.org

Hi!

> > Given your point about security, wouldn't it be nice if there were yet
> > another flag to indicate that encrypted partitions should just be
> > turned off on suspend?
> > 
> > This is more useful than it sounds -- not all partitions are mounted all
> > the time.  It might actually be convenient if you don't want to
> > accidentally leave a partition accessible when you walk away from a
> > machine and forget to losetup -d, or whatever.
> 
> Like Sean Neakums pointed out in earlier post to linux-crypto list, just
> forcing unmount or losetup -d is not really an option. Maybe just checking
> for encrypted loops in userspace _before_ starting suspend is a better
> solution. Something like this:

Agreed. Decision if keys should go to disk is user decision (btw they *do*
go to disk if BIOS is used to suspend-to-disk; some notebooks do s-t-d 
automagially on battery fail), so it has to be userspace.
								Pavel
-- 
Philips Velo 1: 1"x4"x8", 300gram, 60, 12MB, 40bogomips, linux, mutt,
details at http://atrey.karlin.mff.cuni.cz/~pavel/velo/index.html.

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

References:
- Re: ACPI + loop(AES) + swsusp
  - From: "John J. Lee" <jjl@pobox.com>
- Re: ACPI + loop(AES) + swsusp
  - From: Jari Ruusu <jari.ruusu@pp.inet.fi>

Prev by Date: Re: loop-aes crashes with raid5 ?
Next by Date: Discount Tobacco
Prev by thread: Re: ACPI + loop(AES) + swsusp
Next by thread: AT
Index(es):
- Date
- Thread