2008/2/22, Arno Wagner <wagner@xxxxxxxxxxxxxx>: > Would be nice to have, but is technologically infeasible. > The attack relies on hard-reset. This stops everything in its > tracks. No additional code can be executed. This doesn't mean it shouldn't be done on a controlled shutdown/reboot. Several userland tools scrub memory used for storing key material even though they've been mlock'd. Why shouldn't the kernel do the same when they're not needed anymore? -- noah --------------------------------------------------------------------- dm-crypt mailing list - http://www.saout.de/misc/dm-crypt/ To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx For additional commands, e-mail: dm-crypt-help@xxxxxxxx
