Mr. Neakums: Well my thought was that if it is implemented on the EVMS level, then all filesystems (inclusive of swap) would be enabled for encryption by entering a keyword once upon boot up, and it would simply the process of building the encryption. If it was part of EVMS, EVMS would handle it, and then a user could just make filesystems at will and all would be encrypted. There in lies a second issue. For me to use DEVFS and ReiserFS I have a problem doing so with initrd being used (it is a bug I am trying to work through). If I can move loop-aes into the EVMS layer, then I no longer need initrd to have an encrypted root and/or swap. Thus, I can now use aes level encryption with ReiserFS and DEVFS and it can work. Very Respectfully, Stuart Blake Tener, IT3 (E-4), USNR-R, N3GWG Beverly Hills, California VTU 1904G (Volunteer Training Unit) stuart@bh90210.net west coast: (310)-358-0202 P.O. Box 16043, Beverly Hills, CA 90209-2043 east coast: (215)-338-6005 P.O. Box 45859, Philadelphia, PA 19149-5859 Telecopier: (419)-715-6073 fax to email gateway via www.efax.com (it's free!) JOIN THE US NAVY RESERVE, SERVE YOUR COUNTRY, AND BENEFIT FROM IT ALL. Sunday, March 31, 2002 2:24 PM -----Original Message----- From: linux-crypto-bounce@nl.linux.org [mailto:linux-crypto-bounce@nl.linux.org] On Behalf Of Sean Neakums Sent: Sunday, March 31, 2002 9:33 AM To: linux-crypto@nl.linux.org Subject: Re: EVMS and LOOP-AES commence IT3 Stuart Blake Tener, USNR-R quotation: > Correct me if I am wrong, but if loop-aes were integrated into > EVMS, would that not make creating an encrypted swap quite easy? It's already about as easy as it can be. Even if it were integrated into EVMS, you would still have to perform the same steps: generate a session key, pass this key to the encryption module (EVMS plugin, in this case), do mkswap and a swapon. You might as well therefore use the proven volume manager-independent loop-aes or cryptoloop solutions, rather than a new EVMS-specific encryption module. -- ///////////////// | | The spark of a pin <sneakums@zork.net> | (require 'gnu) | dropping, falling feather-like. \\\\\\\\\\\\\\\\\ | | There is too much noise. - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/ - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
