>> I intended to know if root can access the files when a user is accessing >> the system regularly. > That would be a yes. > > Once the filesystem is mounted, it's mounted -- and you trust the kernel > (and, therefore, root) with everything that's mounted. I can't think > how it could be any other way -- at least without fundamental changes to > the architecture of the OS. The OS is fine, a special client software is necessary for doing this. I thought with the windows client FreeOTFE I could realise the scenario like with the commercial solution "SafeGuard LAN Crypt". Have a look: http://www.infoguard.com/index.php?nav=6,84,203&lang=en I'm thinking about how the idea of LUKS could be used like that without writing everything new... Mathias --------------------------------------------------------------------- - http://www.saout.de/misc/dm-crypt/ To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx For additional commands, e-mail: dm-crypt-help@xxxxxxxx