On Thu 2019-04-11 10:04:02 +0200, Andreas Schwab wrote:
> On Apr 10 2019, Daniel Kahn Gillmor <d...@fifthhorseman.net> wrote:
>
>> data written to the local filesystem can be discovered by someone
>> analyzing the disk controller data path, or by someone with access to
>> the underlying storage medium.
>
> Do you have swap enabled?
The machines i use that have swap have it enabled via dmcrypt with an
ephemeral key, so no cleartext RAM is ever written to disk.
This is pretty standard practice afaict.
--dkg
