Gregory Hosler wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 04/25/2011 09:48 AM, Digimer wrote: >> On 04/24/2011 09:46 PM, ssc1478 wrote: >>> Hi, >>> >>> I'm new to Fedora - been using Ubuntu for years. I just installed >>> Fedora 14 to my laptop and selected to encrypt /home. >>> >>> When I boot, I have to enter the password for the encrypted directory. >>> Did I set it up wrong? I didn't expect to have to enter the password >>> at boot but instead thought the login password would be enough. >>> >>> Thanks! >>> >>> Phil >> >> It encrypts the partition, so when the system tries to mount /etc/fstab >> partitions, of which /home is likely one, it requires the password then. > > alternately, you can setup /etc/crypttab so that the password is not entered > manually. > This adds no security at all from the encryption. The only reason to use encryption and then build in the pass phrase is to allow you to claim that the data was encrypted if you lose the machine, therefore giving you legal cover if the data you lost belongs to customers. I can't decide if that's a sleazy legal trick to provide cover without the effort to have security, or if it just shows how little the average user knows about security in the first place. Reading the pass phrase from a device like a thumb drive is only useful if the thumb drive is not with the computer. It is possible to have one laptop which allows access to multiple things based on the password offered. I've never been interested enough to generate a real use case, but it seems that LUKS actually supports this. If access is convenient for you it will be convenient for an unauthorized user as well. > All the best, > > - -Greg > > - -- > +---------------------------------------------------------------------+ > > Please also check the log file at "/dev/null" for additional information. > (from /var/log/Xorg.setup.log) > > | Greg Hosler ghosler@xxxxxxxxxx | > +---------------------------------------------------------------------+ > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ > > iEYEARECAAYFAk20/4UACgkQ404fl/0CV/ThcQCgvNiWVcrH/UGzAnaPoASUpIQz > G4MAnijta4BmUTqnLwOhxTTW+FZLk6qu > =3QwD > -----END PGP SIGNATURE----- -- Bill Davidsen <davidsen@xxxxxxx> "We have more to fear from the bungling of the incompetent than from the machinations of the wicked." - from Slashdot -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
