> My suggestion is instead of worrying about the swap space, or the tmp
> space, worry about an entire OS security posture(eg. filesystem, memory,
> boot). So if a machine is stolen or comprised, there is an onion of
> security protecting you, not just one or two things.
What you are saying above suspiciously sounds like:
"I want an onion, lets leave out the layers!"
If you really want an onion, I suspect encrypted
swap will be a useful layer to have as part of your
onion...
Rik
-- Executive summary of a recent Microsoft press release: "we are concerned about the GNU General Public License (GPL)"
http://www.surriel.com/ http://www.conectiva.com/ http://distro.conectiva.com/
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/