-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, Oct 07, 2001 at 10:23:49PM -0700, Steve wrote: > Derek D. Martin wrote: > > >I formerly used the Linux international crypto API patches, found at > >www.kerneli.org (the i after kernel is NOT a type-o). > > > Do you know how the kerneli implementation compares to PPDD? No, I can't really say. I remember looking at PPDD a while back, and IIRC I didn't pursue it either, because of the same limitations of needing specific kernels. Not really sure though. That was a while ago... > >same. I'll admit that when I first used the crypto API to encrypt a > >partition, I had to re-read the docs several times to figure out how > >to get it all working... I think it's not for people who are > >squeamish about such things as compiling kernels and risking data > >loss... :) > > > Now where would the fun be without the irony of risking your data to secure > it? Heh... the irony! Once it's set up properly, and assuming you don't do anything stupid, it's quite reliable. The trick is getting to that point... Another thing to consider: presumably, the data that's there is important to you, and though it's reliable you still have to deal with all the normal problems that can result in data loss, i.e. disk failure, operator error, etc. So you really should back it up. But if you don't encrypt your back-ups, then you may as well not bother! At that point, it becomes a whole lot easier for an attacker to steal your back-ups than to bother with trying to decrypt your on-disk data. There are numerous ways to handle the back-ups. - copy to a second encrypted disk - pipe back-ups through gpg... - use your back-up mechanism's built in encryption (if it's supported) - possibly other things Now, you just need to figure out what will work best for you. =8^) - -- - --------------------------------------------------- Derek Martin | Unix/Linux geek ddm@pizzashack.org | GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7wUx8djdlQoHP510RAkhkAKCKtec0Kp8UJnaNpMM864BJ9pkWsACfc64P noHMyrgSSlAu8BuLGZwV3jw= =kP05 -----END PGP SIGNATURE----- - Subcription/unsubscription/info requests: send e-mail with "subscribe", "unsubscribe", or "info" on the first line of the message body to discuss-request@blu.org (Subject line is ignored).