vlad schrieb:
> Thanks, helpful hints.
But does this also work with "suspend-to-ram"?
I mean, when suspending to ram everything remains unencrypted?
Do I see this right?
Suspend to RAM always works - however, there are potential attacks where
people freeze your laptop, take out the (frozen) R
On Sun, Oct 25, 2009 at 05:01:11PM +0100, Thomas Bächler wrote:
>
> It is possible. Consider the following setup:
>
> You have two partitions, one small (50MB) /boot /dev/sda1, the rest
> /dev/sda2. Now you create a LUKS-Volume in /dev/sda2, let's call
> this volume enc. Inside /dev/mapper/enc cr
Hi,
ok, I've set everything up as described by you, and it actually works
just great. The only problem I ran into was that I've backed up my files
using "partclone", which is just great, but as I've changed my partition
scheme a little bit, it was quite hard to restore everything, as
partclone doe
>
> thanks very much, I'm about to save my stuff, and trying to set this up,
> although it could take a while ;).
Yes, thanks Thomas. I look forward to trying this the next time I do
an install. Added security is always added peace of mind :)
-- Chris
Hi,
thanks very much, I'm about to save my stuff, and trying to set this up,
although it could take a while ;).
--
Best regards,
Karol Babioch
signature.asc
Description: This is a digitally signed message part
Thomas Bächler wrote:
> Karol Babioch schrieb:
>> Hi,
>>
>> I've recently set up full encryption of my system (including swap), but
>> therefore lost the possibility to suspend my device to disk (hibernate).
>>
>> The only way mentioned in the wiki is highly not recommended as you
>> would have to
Thomas Bächler schrieb:
How do you get both hibernation and full encryption working together?
It is possible. Consider the following setup:
You have two partitions, one small (50MB) /boot /dev/sda1, the rest
/dev/sda2. Now you create a LUKS-Volume in /dev/sda2, let's call this
volume enc. In
Karol Babioch schrieb:
Hi,
I've recently set up full encryption of my system (including swap), but
therefore lost the possibility to suspend my device to disk (hibernate).
The only way mentioned in the wiki is highly not recommended as you
would have to place your key on the unencrypted boot pa
Karol Babioch wrote:
> Hi,
>
> On So, 2009-10-25 at 11:27 -0400, Daenyth Blank wrote:
>> Could you put the key on a usb drive so that the drive is required to
>> unlock the partitions?
>
> thank you very much for your reply. However I don't like the idea to
> store my key(s) on an usb drive. Firs
> How do you get both hibernation and full encryption working together?
you can probably modify the initramfs scripts to ask the password and
unlock your swap partition before trying to resume.
The initramfs scripts are in /lib/initcpio/hooks/
--
damjan
Hi,
On So, 2009-10-25 at 11:27 -0400, Daenyth Blank wrote:
> Could you put the key on a usb drive so that the drive is required to
> unlock the partitions?
thank you very much for your reply. However I don't like the idea to
store my key(s) on an usb drive. First of all if my laptop really gets
s
Hi,
I'm sorry that I've sent my message twice, my Evolution has crashed, and
the message wasn't in the "Sent" folder, so I assumed that it has
crashed before it has sent the message. As it seems I was wrong ;).
--
Best regards,
Karol Babioch
signature.asc
Description: This is a digitally sign
On Sun, Oct 25, 2009 at 11:17, Karol Babioch wrote:
> Hi,
> The only way mentioned in the wiki is highly not recommended as you
> would have to place your key on the unencrypted boot partition, which
> basically conflicts the idea of full encryption (see
> http://wiki.archlinux.org/index.php/Syste
Hi,
I've recently set up full encryption of my system (including swap), but
therefore lost the possibility to suspend my device to disk (hibernate).
The only way mentioned in the wiki is highly not recommended as you
would have to place your key on the unencrypted boot partition, which
basically
Hi,
I've recently set up full encryption of my system (including swap), but
therefore lost the possibility to suspend my device to disk (hibernate).
The only way mentioned in the wiki is highly not recommended as you
would have to place your key on the unencrypted boot partition, which
basically
15 matches
Mail list logo
