Subject: Re: zero'd swap & encrypted swap
To: None <CaptnZilog@aol.com>
From: Michael Lyle <mlyle@recourse.net>
List: tech-kern
Date: 06/14/2001 11:21:11
On Thu, Jun 14, 2001 at 02:20:31PM -0400, CaptnZilog@aol.com wrote:
> even that doesn't seem to make much sense to me...  so, if you are on a diskless workstation you encrypt swap, yet have your root filesystem mounted over unencrypted NFS?  And *where* does it read your encrypted password from when you log on?
> 
> At this point, you may as well encrypt NFS traffic as a whole, since anything less would be useless.  So what then is the point in encrypting swap, to re-encrypt it going back out on NFS?

At least at this point you don't have the risk of the password in
unencrypted form (in login, for example) being swapped out.. or things
like unencrypted pgp keys, etc.

Mike

-- 
Michael P. Lyle
Chief Technical Officer
Recourse Technologies, Inc.

The contents of this message are confidential.
Copyright 2001 M. Lyle