Am Freitag, 6. Februar 2009 21:45:02 schrieb Christof Hanke: > Sorry, but I think you see this from the wrong angle. > The point I think here is to protect sensitive data even against admins, > the guys who can read /vicep* anyway...
What prevents an admin from loggin in on the client machine to read the data while the volume is mounted? > Having said this, it is clear the encryption has to be on the client side. I guess the best would be if it would happen at application level. Means: let application store their data as GPG-encrypted files directly. Bye... Dirk
signature.asc
Description: This is a digitally signed message part.