-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yeah, this is kind of where I see this guide going but I think that is
very future looking right now. Thanks for the resource, though. I've
been looking for that link for a while but I thought it was a NIST
document vice a NSA document.
Right now we need to get, at least, the information that is specific to
Fedora 9 into the document. I think most of it is there but I want to
clean it up a bit before letting the editors at it.
I'm currently doing updates on my Rawhide box and then I'm going to play
to see if I can break a few things.
Eric
Gayathri Swaminathan wrote:
| Hey Eric:
|
| Not long ago Murray had forwarded this to the list:
| http://www.nsa.gov/snac/downloads_redhat.cfm?MenuID=scg10.3.1.1
|
| While there are lots of reference materials like these as security best
| practices sources, there is a lack of less daunting simple starters!
|
| Instead of by "type of crypt" perhaps a cook book style of:
|
| - <Security/privacy guideline> for <title> - example, "Securing
filesystem"
| - Scenarios - why it is needed? when it is needed?
| - Standards - mention best practice here
| - How to do it
|
| Count me in for assistance.
|
| On Thu, Mar 20, 2008 at 7:45 AM, Eric H Christensen
| <eric@xxxxxxxxxxxxxxxxxxx <mailto:eric@xxxxxxxxxxxxxxxxxxx>> wrote:
|
| I've been working on updating the Crypto Guide (or Encryption and
| Privacy Guide) [1] but I've run into a few snags. Karsten "Quaid"
| and I have been talking about the different information that should
| be included but we've come to a point where we need input from the
| group.
|
| Originally the Crypto Guide was written to show how to implement
| LUKS disk encryption within Fedora. This has been done and tested.
| Being that this is the "Encryption and Privacy Guide" proposed
| topics to include in the guide are:
|
| - LUKS Disk Encryption Solution
| - eCryptfs Disk Encryption Solution
| - GnuPG (GPG) File Encryption Solution
| - GnuPG (GPG) Email Encryption Solution
| - SSH
| - VPNs
| - Other related references.
|
| I guess the biggest problem is where do you draw the line between
| Fedora-specific implementations and good security practices that
| have information available somewhere else?
|
| So I'm asking you what should be included in the Guide and what
| shouldn't. I'm going to try to go put as much information into the
| topics that are listed above but this has to be out the door for F9
| so I don't want to put too much information into it. If anyone
| would like to assist writing on any of the above topics please let
| me know.
|
| Eric
|
|
| [1] http://fedoraproject.org/wiki/Docs/Drafts/CryptoGuide
- --
fedora-docs-list mailing list
fedora-docs-list@xxxxxxxxxx <mailto:fedora-docs-list@xxxxxxxxxx>
To unsubscribe:
https://www.redhat.com/mailman/listinfo/fedora-docs-list
| --
| Gayathri Swaminathan
| gpgkey: 3EFB3D39
| Volunteer, FDP
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFH7EE7L5V8yddJCO0RAqtuAJ4wr1d6HmOPZCVTakp5MCmeoKRK6gCfc03V
pRz+zTpQhFqySVk4z/sGIt4=
=W9OS
-----END PGP SIGNATURE-----
--
fedora-docs-list mailing list
fedora-docs-list@xxxxxxxxxx
To unsubscribe:
https://www.redhat.com/mailman/listinfo/fedora-docs-list
