smallnow <smallnow@xxxxxxxxx> wrote:
> So this key could be used to decrypt my data, without knowing any passphrase?
Yes. But this is no harm, at least no more harm than there already is
anyways...
If somebody can read this key, he must be root. If he is root anyways,
it doesn't matter if he can read this key or not. If he could not, he
would still be able to exchange your cryptsetup binary, your dm-crypt
module, your keyboard device driver or whatever he likes to sniff your
passphrase.
regards
Mario
--
Programmieren in C++ haelt die grauen Zellen am Leben. Es schaerft
alle fuenf Sinne: den Schwachsinn, den Bloedsinn, den Wahnsinn, den
Unsinn und den Stumpfsinn.
[Holger Veit in doc]
---------------------------------------------------------------------
dm-crypt mailing list - http://www.saout.de/misc/dm-crypt/
To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx
For additional commands, e-mail: dm-crypt-help@xxxxxxxx
