That tool is called dd.
dd if=/dev/hda2 of=luksheader count=1032
Yeah, of course you can dd it, but it's a solution/hack that has been "invented" to get around the basic problem. The security/recovery should be within dm-crypt since the header is a core part of the program. You still lack tools in dm-crypt that allow additional security around the header (like additional locations, export/import), so it's still a single-point-of-error. /Paul T
