Thank you for you answer :-)
Since, as you explained, there is no real drawback to C.1.b and since C.1.a could cause a problem because the master key isn't random, it looks like the best way to go is C.1.b.
Then, since the concatenation of the password and the keyfile isn't used as a master key, it should be safe to use B.2.
So the only question remaining is whether C.2.a is safe.
_______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
