[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Filesystem encryption

Subject: [ale] Filesystem encryption
From: jimbutler1234567890 at gmail.com (Jim Butler)
Date: Wed, 13 Oct 2010 16:32:38 -0400

  Hi Linux People!
I have a question and am looking for some experienced suggestions.
I saw a server recently that had filesystem encryption applied to the 
entire root filesystem volume.
Although I am not sure, I do believe that the encryption scheme probably 
was not loopback (cryptoloop) because the server did not have a key 
stored on an external device. My understanding of loopback encryption is 
that the kernel and initrd have to be stored on at least some kind of 
un-encrypted media in order to boot to at least a small level sufficient 
to ask for the pass-key to decrypt/mount the filesystem.
If the encryption scheme wasn't loopback encryption, what could it have 
been? What ways are popular right now for encrypting an entire root 
filesystem without using a thumbdrive or other external storage??
If someone can help me identify what this was, maybe I can read up on it 
and implement it on one of my own servers.

Thanks in advance,
Jim Butler
Linux Network Administrator.

Follow-Ups:
- [ale] Filesystem encryption
  - From: greg.freemyer at gmail.com (Greg Freemyer)
- [ale] Filesystem encryption
  - From: mhw at WittsEnd.com (Michael H. Warfield)

Prev by Date: [ale] China chooses FreeBSD as basis for secure OS
Next by Date: [ale] Filesystem encryption
Previous by thread: [ale] ceph (a distributed fs), any interest in setting up a ALE test environment?
Next by thread: [ale] Filesystem encryption
Index(es):
- Date
- Thread