Re: Encrypted dvd again.

[Jari Ruusu <jariruusu@xxxxxxxxxxxxxxxxxxxxx>]

Gabriel Jägenstedt wrote:
> Heya! I use aespipe to encrypt dvds like the readme tells me. However I
> would prefer to not mount the device when I'm going to play a dvd.
> I figured this should work but alas. What am I missing?
> 
> sudo losetup -e AES256 -K /dev/hdc -o 8192 /dev/loop11 /dev/hdc
> Password:
> Error: gpg key file decryption failed
> 
> This mounts the device without problem. But as stated I don't want it
> mounted.
> 
> /dev/hdc    /mnt/dvd    iso9660
> ro,user,noauto,loop=/dev/loop11,encryption=AES256,gpgkey=/dev/hdc,offset=8192
>                      0   0

If the keyfile at beginning of the CD-ROM is symmetrically encrypted, then
above sudo works fine. However, if it is public key encrypted, then you need
to specify a directory for gpg keyrings. This is because suid-root mount
runs with EUID=root UID=gabriel, and sudo run EUID=root UID=root. The UID is
used to locate home directory of the user.

Try this one:
 sudo losetup -e AES256 -K /dev/hdc -G /home/gabriel/.gnupg -o 8192 /dev/loop11 /dev/hdc
                                    ^^^^^^^^^^^^^^^^^^^^^^^
-- 
Jari Ruusu  1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9  DB 1D EB E3 24 0E A9 DD

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/