From: "Jochen Hoenicke" [EMAIL PROTECTED]
Subject: Re: Image decryption support in GRUB?
Date: Thu, 3 Aug 2000 13:07:45 +0200 (MET DST)
What about "kernel [blowfish,12345678]/tftproot/kernel.image"
One could concatenate filters like this:
[gunzip][blowfis
On Aug 2, Gordon Matzigkeit wrote:
[...]
In order to make your decryption support both clean and extensible, I
would advise a more Hurdish approach:
grub settrans -a / blowfish 12345678 # use one key
grub kernel /tftproot/kernel.image
grub settrans -a / blowfish 87654321 # use
As part of some work I am doing at the moment, I am looking at being
able to securely bootstrap (nearly) diskless machines over an
untrusted network.
Now, the best way that I have, off hand, been able to figure doing this
is to have a key on each client machine and use that to decrypt an image
On Aug 2, Daniel Pittman wrote:
As part of some work I am doing at the moment, I am looking at being
able to securely bootstrap (nearly) diskless machines over an
untrusted network.
Now, the best way that I have, off hand, been able to figure doing this
is to have a key on each client
On Wed, 2 Aug 2000, Jochen Hoenicke wrote:
On Aug 2, Daniel Pittman wrote:
As part of some work I am doing at the moment, I am looking at being
able to securely bootstrap (nearly) diskless machines over an
untrusted network.
[...]
Put your decryption routine in a multiboot compliant
Daniel Pittman writes:
DP This does address my needs, at this stage, and is certainly
DP something that I can implement inside GRUB. I would propose a new
DP command as follows
BTW, thanks for asking about the interface before you begin
implementation. That way, if your patches become part
Hello, Daniel!
As part of some work I am doing at the moment, I am looking at being
able to securely bootstrap (nearly) diskless machines over an
untrusted network.
Are you afraid that somebody will make a copy of the image or that
somebody will send a wrong image?
Now, the best way that I
On Wed, 2 Aug 2000, Pavel Roskin [EMAIL PROTECTED] wrote:
Hello, Daniel!
As part of some work I am doing at the moment, I am looking at being
able to securely bootstrap (nearly) diskless machines over an
untrusted network.
Are you afraid that somebody will make a copy of the image or