encrypted root filesystem

Ian Molton spyro at f2s.com
Tue Feb 24 01:26:54 PST 2004

On Mon, 23 Feb 2004 17:52:59 -0600
Dagmar d'Surreal <dagmar.wants at nospam.com> wrote:

> For this much trouble
> one might as well encrypt the whole thing and get the benefit of knowing
> their OS binaries weren't tampered with while they were away.

If you've already been rooted you have more serious problems to worry about... and a crypto fs wont keep you from being rooted whilst its mounted, as you point out.
> For some people, software implementations aren't going to be necessary. 
> IBM makes several laptops which come with an optional feature (it's not
> on their cheapie models, but it doesn't cost extra either) that while
> primarily deterring theft, protects the data to a degree that requires
> some pretty hefty hardware tampering to get around.

Which really is the 'right way' (tm) if you're that paranoid...

Spyros lair: http://www.mnementh.co.uk/   ||||   Maintainer: arm26 linux

Do not meddle in the affairs of Dragons, for you are tasty and good with ketchup.

More information about the hlfs-dev mailing list