[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Loop-AES & Full-disk encryption
Michael Zhu wrote:
> Is Loop-AES a kind of full-disk encryption?
Loop-AES encrypts devices. You can encrypt full device /dev/hda using
loop-AES, but usually it is used to encrypt partitions like /dev/hda4
> I mean Loop-AES is a sector by sector partition based encryption or not?
It is sector by sector encryption.
> I read the README about the Loop-AES. It says that Loop-AES will create a
> boot partition and this boot partition is unencrypted. What kind of
> information contained in this small boot partition? The Linux kernel image
> or just some kind of boot records? Loop-AES will encrypt the entire
> operation system including all the system files?
Kernel needs to be loaded from some unencrypted device. Usually bootloader
and kernel are in /boot but sometimes they are loaded from CD-ROM or
USB-stick.
--
Jari Ruusu 1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9 DB 1D EB E3 24 0E A9 DD
-
Linux-crypto: cryptography in and on the Linux system
Archive: http://mail.nl.linux.org/linux-crypto/