>On Thu, Sep 04, 2008 at 08:03:48PM +0200, Maciej Korze? wrote: >> Alexander Golovin wrote: >>> [...] >>> 2. Created the cryptographic device mapper: cryptsetup -y >>> create crypt /dev/hda6 (entered passphrase twice) [...] >> >> cryptoloop is not the best choice: >> http://mareichelt.de/pub/texts.cryptoloop.php. >> :-) First of all, that's not cryptoloop Alexander is using. It's dm-crypt and that's gotten A LOT better since kernels prior to 2.6.10. >it seems that was true for pre 2.6.10. not saying dm-crypt is >better than loop-aes, not sure what the status is now It's mentioned in the text linked. "By now" dm-crypt is mature enough to handle one's data safely, regarding cryptography. From what I read on the dm-crypt mailinglist every now and then, I'd still recommend loop-AES over dm-crypt for stability and reliability alone. YMMW, of course. Again, the text linked was/is not meant to diss certain crypto implementations but warn about potentially significant flaws of current crypto implementations. -- left blank, right bald
Attachment:
pgpYfi92_DQgV.pgp
Description: PGP signature