Re: SECURITY: Patch for broken rc.sysinit in Mandrake 8.2

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Michel Bouissou wrote:
> Mandrake 8.2 comes with a kernel RPM including loop-aes.
> 
> It is supposed to be able to do a lot of useful things with it, including
> automatically encrypt swap partitions if wanted.
[snip]
> Feel free to give me your feedback and comments.

Not directly related to Mandrake init scripts, but next version of loop-AES
will setup encrypted swap _without_ changes to init scripts. All user needs
to do is to add "loop=/dev/loop?" and "encryption=AES128" options to swap
lines in /etc/fstab and "swapon -a" and "swapoff -a" will take care of all
encrypted swap setup work.

Example of /etc/fstab line:
 /dev/hda666   none   swap   sw,loop=/dev/loop6,encryption=AES128   0   0
                                ^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^
I have attached new util-linux patches if someone wants to try them.
Compile and install like this:

    bzip2 -d -c util-linux-2.11o.tar.bz2 | tar xvf -
    cd util-linux-2.11o
    patch -p1 <../util-linux-2.11o-1.diff
    patch -p1 <../util-linux-2.11o-2.diff
    ./configure
    make SUBDIRS="lib mount"
    cd mount
    install -m 4755 -o root mount umount /bin
    install -m 755 losetup swapon /sbin
    rm -f /sbin/swapoff && ( cd /sbin && ln -s swapon swapoff )
    rm -f /usr/man/man8/{mount,umount,losetup,swapon,swapoff}.8.gz
    install -m 644 mount.8 umount.8 losetup.8 swapon.8 swapoff.8 /usr/man/man8
    rm -f /usr/man/man5/fstab.5.gz
    install -m 644 fstab.5 /usr/man/man5
    mandb

Regards,
Jari Ruusu <jari.ruusu@pp.inet.fi>

Attachment: util-linux-2.11o-1.diff.gz
Description: GNU Zip compressed data

-----BEGIN PGP MESSAGE-----
Version: 2.6.3ia
Comment: http://loop-aes.sourceforge.net/PGP-public-key.asc

iQCVAwUAPLCB5jMKg0M6Ig9RAQFzGwP+Nn3wYZiMVNVul+JUOz8STaVpnJKB/PMw
hxuUthuQ4E+4nLSlBfAsBwzG32QQ/3r6u4j84j9jLGRbdgmsEWldLGSEcYuVPGjm
9r7WAnh/pvCzi7nM39zQwuoIfRnzkj9a0IFUr+oy9ZCVRsqsTU9r62UyydDcQK9S
VwgVQ1QaQRM=
=84T3
-----END PGP MESSAGE-----

Attachment: util-linux-2.11o-2.diff.gz
Description: GNU Zip compressed data

-----BEGIN PGP MESSAGE-----
Version: 2.6.3ia
Comment: http://loop-aes.sourceforge.net/PGP-public-key.asc

iQCVAwUAPLCB8jMKg0M6Ig9RAQHQiAP+Id0xpxLDFEI5o0C3R+08uFY+fTAHjzaw
YZ+V6GMmL7U39QnCRpXRHI+bTdp0koLm7gwDvRfYrVZ/xQRi3AtbdbSPaI6iY6jp
Rcr3dUU5yqQjJ/y3qpo8YEmuJ9+J3SAljpj8+XVjfmG4bCpAfnpG/PRpcb6kLHCJ
NejFncXaO6I=
=HgHn
-----END PGP MESSAGE-----
[Index of Archives]     [Kernel]     [Linux Crypto]     [Gnu Crypto]     [Gnu Classpath]     [Netfilter]     [Bugtraq]
  Powered by Linux