Hello everyone I've been looking arround for a way to use a PGP(/GPG) encrypted disk image on Linux. PGPdisk seems to provide it for windows (although the fact that the underlying OS is insecure neutralises the security).
What I have in mind is a disk image with a filesystem on it that provides on the fly encryption with gnupg. That part is easy, but it should be mounted without decrypting it to disk first (avoiding a vulnerable copy that can be recovered). let's say that I have an image called /home/gvs/safe.imgpg. It should be mounted with something like 'mount -t gpg_img /home/gvs/safe.imgpg /home/gvs/safe, where you put your passphrase in. The trick is that the image should never be fully decrypted, if the system is powered off without unmounting, the image should remain encrypted. Using OpenPGP for the encryption has the advantage over other encrypted filesystems that you need both the private key and the passphrase to decrypt it, which makes it safe to transport it over insecure channels (like ftp). Maybe some option can be added, setting a timeout for the passphrase (next access needs it to be re-entered). Has anyone ever heard of something like this? Or any ideas how exactly this can be pieced together with existing programs? Thanks in advance Guy -- Guy Van Sanden <[EMAIL PROTECTED]>
signature.asc
Description: This is a digitally signed message part