Gabriel Jägenstedt wrote:
> Heya! I use aespipe to encrypt dvds like the readme tells me. However I
> would prefer to not mount the device when I'm going to play a dvd.
> I figured this should work but alas. What am I missing?
>
> sudo losetup -e AES256 -K /dev/hdc -o 8192 /dev/loop11 /dev/hdc
> Password:
> Error: gpg key file decryption failed
>
> This mounts the device without problem. But as stated I don't want it
> mounted.
>
> /dev/hdc /mnt/dvd iso9660
> ro,user,noauto,loop=/dev/loop11,encryption=AES256,gpgkey=/dev/hdc,offset=8192
> 0 0
If the keyfile at beginning of the CD-ROM is symmetrically encrypted, then
above sudo works fine. However, if it is public key encrypted, then you need
to specify a directory for gpg keyrings. This is because suid-root mount
runs with EUID=root UID=gabriel, and sudo run EUID=root UID=root. The UID is
used to locate home directory of the user.
Try this one:
sudo losetup -e AES256 -K /dev/hdc -G /home/gabriel/.gnupg -o 8192 /dev/loop11 /dev/hdc
^^^^^^^^^^^^^^^^^^^^^^^
--
Jari Ruusu 1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9 DB 1D EB E3 24 0E A9 DD
-
Linux-crypto: cryptography in and on the Linux system
Archive: http://mail.nl.linux.org/linux-crypto/
