On Thu, 24 Jun 2010 11:26:57 -0600 Shane Hathaway <sh...@hathawaymix.org> wrote:
> On 06/24/2010 09:44 AM, Charles Curley wrote: > > I realized that what was farkled was not the kernel itself, but the > > initrd. So I made a backup copy of the fallback kernel's initrd. I > > then purged the hibernate package. In the process of removing it, > > apt created a new initrd -- replacing the farkled one, not the > > fallback initrd. So that solved that problem. > > > > I have rebooted to the newer kernel. > > > > I still don't have a menu entry for hibernating, though. > > It sounds like you're using hibernation with an encrypted swap > device. Is that even possible? ;-) Has it worked before? I have no idea. Considering the security implications of running without an encrypted swap partition, I hope so. But for serious security concerns (while going through the Terminally Stupid Agency's line to get fondled, riding in NYC taxis, e.g.), shut the thing down completely. If you have an encrypted swap area or encrypted file system(s), remember that those are mounted during the suspension or hibernation, so if bad guys can get the machine up from suspension or hibernation, they have bypassed your encryption. With that in mind, maybe I should get rid of the encryption in the swap partition? > > Also, I am interested to hear if you have really had a good > experience with hibernation on Linux. On my laptop, sleeping works > well, but resuming from hibernation takes far too long to be > worthwhile. Depends on how long you plan to shut down. If you will exhaust the the battery in suspension, then use hibernation. However, hibernation writes a memory image to a swap partition, where bad guys can recover it. Suspension does not, so it leaves one less thing around for the bad guys to recover. http://www.charlescurley.com/blog/archives/2009/12/05/how_to_secure_your_laptop_before_crossing_the_border/index.html -- Charles Curley /"\ ASCII Ribbon Campaign Looking for fine software \ / Respect for open standards and/or writing? X No HTML/RTF in email http://www.charlescurley.com / \ No M$ Word docs in email Key fingerprint = CE5C 6645 A45A 64E4 94C0 809C FFF6 4C48 4ECD DFDB /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
