Re: summary Re: encrypted swap

Andreas Dilger (adilger@turbolinux.com)
Thu, 9 Aug 2001 09:29:23 -0600 (MDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Andrea Arcangeli: "Re: alloc_area_pte: page already exists"
Previous message: David Woodhouse: "Re: Duplicate symbols in -ac JFFS2"

David Ford writes:
> I keep giving examples where encrypted swap can still be useful even
> (or especially) when there is a risk that an attacker might gain access
> to the machine occasionally. I like to think my examples should
> have been pretty clear, but if not, please ask, and I'll be happy to
> elaborate on whichever point you found unclear.

Another interesting use for encrypted swap - if you use it in conjunction
with tmpfs, then _many_ of the files in /tmp will never even be written
to disk (closing another potential security hole), but those that do get
written will be encrypted by swap (so are also safer).

Finally, there is the related issue of "diskless" machines, which have
swap and /tmp on a local disk (for improved performance/reduced network
overhead), and everything else is over the network. I know many banks
run this way, so stealing one of these systems would not compromise
data if swap is encrypted.

Cheers, Andreas

-- Andreas Dilger \ "If a man ate a pound of pasta and a pound of antipasto, \ would they cancel out, leaving him still hungry?" http://www-mddsp.enel.ucalgary.ca/People/adilger/ -- Dogbert

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrea Arcangeli: "Re: alloc_area_pte: page already exists"
Previous message: David Woodhouse: "Re: Duplicate symbols in -ac JFFS2"