[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Multi-key loop-aes question
Daniel Harvey wrote:
> I am trying to mount local crypto filesystems with a key help remotely
> (on USB keydrive). I currently use the following:
>
> ssh user@host cat keyfile | mount -p 0 ...
>
> I was wanting to upgrade this to multi-key encryption. Looks like I will
> need to go down the path of using the shfs (http://shfs.sourceforge.net/)
> module to get to the key files (I don't want anything stored locally).
>
> FYI, suggestions welcome, hope I've explained it clearly enough.
You can still use
ssh user@host cat keyfile | mount -p 0 -o gpgkey=/etc/foo
that uses /etc/foo key file that _is_ stored locally, but if that key file
is gpg encrypted with password like
P+zl9O2QYxJZcgMO94+IN9ezfjf/BVQsNEOXajbWRnO2ok/FLQDD8zCsDDyT
that you pipe through ssh to mount. What is the problem with that?
--
Jari Ruusu 1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9 DB 1D EB E3 24 0E A9 DD
-
Linux-crypto: cryptography in and on the Linux system
Archive: http://mail.nl.linux.org/linux-crypto/