Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny

To: Jonas Andradas <j.andradas@gmail.com>
Cc: Thomas Nguyen Van <t.nguyenvan@jumper.ie>, Jeroen van Dongen <jeroen@lbvd.nl>, debian-security@lists.debian.org
Subject: Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
From: Andrew McGlashan <andrew.mcglashan@affinityvision.com.au>
Date: Mon, 24 Jan 2011 23:53:54 +1100
Message-id: <[🔎] 4D3D7662.9050705@affinityvision.com.au>
In-reply-to: <[🔎] AANLkTi=tUb849WNRkNpcdqjkN8VY=GMqEAVD__uaS43y@mail.gmail.com>
References: <669549.20451295858737446.JavaMail.root@IRL-DUB-P-SRV-02> <[🔎] 9242449.20471295859095788.JavaMail.root@IRL-DUB-P-SRV-02> <[🔎] AANLkTi=pxm1x-e426zx3qfPoC2_a41DOB2Hq8bXZOmHT@mail.gmail.com> <[🔎] 4D3D5D22.2080803@affinityvision.com.au> <[🔎] AANLkTi=tUb849WNRkNpcdqjkN8VY=GMqEAVD__uaS43y@mail.gmail.com>

Hi Jonas,

Jonas Andradas wrote:

however, having to start up the Mandos server in order for the host tostart-up could defeat the purpose of Mandos itself, which is supposed toallow servers to start up autonomously, without human intervention. Ofcourse, you could always have your monitoring software detect the serverfailure or reboot and as an action, trigger the startup of a Mandos VM.In this case, however, the Mandos server probably would not befull-disk encrypted (otherwise, it would need human intervention tostart or another Mandos-server running somewhere), but maybe it would bepossible to come up with an interesting setup to achieve this.

It also sounds like something that could be turned into a service, likeDNS -- have two or more Mandos servers available for clients; same asDNS, have them on different networks and also different physicallocations where possible.


--
Kind Regards
AndrewM

Andrew McGlashan
Broadband Solutions now including VoIP

Reply to:

References:
- Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
  - From: Thomas Nguyen Van <t.nguyenvan@jumper.ie>
- Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
  - From: Jonas Andradas <j.andradas@gmail.com>
- Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
  - From: Andrew McGlashan <andrew.mcglashan@affinityvision.com.au>
- Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
  - From: Jonas Andradas <j.andradas@gmail.com>

Prev by Date: Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Next by Date: RE: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Previous by thread: Re: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Next by thread: RE: Question related to FDE (Full Disk Encryption) solution under Linux Debian Lenny
Index(es):
- Date
- Thread