On Fri, 2 Jun 2006 15:51:25 +0200, "M. Kammerer" <qad0t@xxxxxxxxxx> said: > Phil H@Fri, Jun 02, 2006 at 02:57:06AM -0700: >> Applications can write data of one sort or another to /tmp and >> configuration files and so on to /etc (and of course swap), or >> perhaps (clandestinely or not) to some other place that you don't > Encrypting the whole filesystem makes your binaries tamperproof. ... It may make certain attack vectors harder, but it does not make it tamperproof. -- Hubert Chan - email & Jabber: hubert@xxxxxxxxx - http://www.uhoreg.ca/ PGP/GnuPG key: 1024D/124B61FA (Key available at wwwkeys.pgp.net) Fingerprint: 96C5 012F 5F74 A5F7 1FF7 5291 AF29 C719 124B 61FA - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
