Re: encrpyt harddrive without passphrase/userinput

To: debian-security@lists.debian.org
Subject: Re: encrpyt harddrive without passphrase/userinput
From: Lothar Ketterer <superapotheker@m-air.de>
Date: Sun, 26 Feb 2006 23:40:25 +0100 (CET)
Message-id: <[🔎] Pine.LNX.4.64.0602262333500.3150@Apothekerknecht>
In-reply-to: <[🔎] 1140992035.11163.8.camel@spiekey.lansin.ole>
References: <[🔎] 1140988304.6136.18.camel@spiekey.lansin.ole> <[🔎] 20060226212329.GA7226@fonebone.home> <[🔎] 1140992035.11163.8.camel@spiekey.lansin.ole>

Hi Mario,

On Sun, 26 Feb 2006, Mario Ohnewald wrote:

a) it must be able to boot (remotely) without userinput/passphrase
b) the importtant partitions such as /etc, /var, /usr and /home must be
encrypted/protected.


I think the problem will be that you cannot put /etc outside of the root
partition. This means that you cannot boot "normally" and read the
secret from somewhere on the net.

Maybe someone has some cool ideas, too.


Just a thought without being able to exactly tell how to realize this:
boot from CD, read the key/passphrase via network, mount the (encrypted)
root partition and chroot to it?

Regards,
Lothar

Reply to:

Follow-Ups:
- Re: encrpyt harddrive without passphrase/userinput
  - From: "Andreas Nanko, Continum" <andreas.nanko@continum.net>

References:
- encrpyt harddrive without passphrase/userinput
  - From: Mario Ohnewald <mario@bortal.de>
- Re: encrpyt harddrive without passphrase/userinput
  - From: Horst Pflugstaedt <horst@uni-duisburg.de>
- Re: encrpyt harddrive without passphrase/userinput
  - From: Mario Ohnewald <mario@bortal.de>

Prev by Date: Re: encrpyt harddrive without passphrase/userinput
Next by Date: Re: encrpyt harddrive without passphrase/userinput
Previous by thread: Re: encrpyt harddrive without passphrase/userinput
Next by thread: Re: encrpyt harddrive without passphrase/userinput
Index(es):
- Date
- Thread