On Thu, 2010-06-03 at 22:48 +0200, Luca Berra wrote: > well, actually if you look closely at modern filesystems and > partitioning schemes, you will find there are more than one copy of > critical metadata. > ext2 has a backup superblock > GPT partition has a secondary header and table at the other end of the > disk > > we really miss an on-disk backup of the LUKS header. It's never a good idea to spread such security critical information like the master key to much. Therefore the current design of having only one copy per volume is the right design. Everybody can easily make backups of the header, and store them e.g. heavily encrypted at a secure place. Cheers, Chris.
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
