On Fri, Aug 28, 2009 at 07:21:36 +0200, Arno Wagner wrote: > Makes sense and increases security. I am wondering however whether > this could just be scripted by > 1) Store all parameters besides key in some file > 2) Completely remove and umount the device before suspend. > 3) An resume: Use a wraper around dm-crypt that gets the parameters > from the file, asks for the password and initializes and mounts > the device just as if it was newly created. If I understand it correctly, this would require unmounting the partition (and thus killing all programs using it), which I would like to avoid. And cached contents of the filesystem would probably remain in RAM anyway.
Attachment:
signature.asc
Description: Digital signature
_______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
