The Tin Foil Hat
Er... thanks, I think I'll keep the hat on, these days you never know!!Citizen Jimserac
View Articlecheck-selinux-installation on current debian sid
Tanks for the vital info about selinux installation. But on the current debian sid I got a little problem with the motd check of the check-selinux-installation script. Now it checks /etc/default/rcS...
View ArticleFurther ideas - Boot from CD-R
"The /boot partition is still unencrypted, so an attacker can tamper with it. Boot from a CD-R, forbid booting from hard drive (BIOS)."Do you know a detailed instruction, how to boot a LUKS-encrypted...
View ArticleInstalled it, but get Boot Error on boot, though the stick is bo
Hi:I did something akin to this, though the easier way I think. Installed debian from a netinst CD to a USB stick. Made an unencrypted boot partition and an encrypted partition, using LVM. Installed...
View ArticleI was able to get my boot
I was able to get my boot partition on cdrom by loosely following the instructions found at http://pusling.com/blog/?p=25Now I'd just like to figure out how to have the Passphrase read from the cdrom...
View ArticlePassphrase from CDROM
No, but I don't think you want that, it'll make the whole procedure less secure. Anybody who gets that CDROM in his fingers has access to your encrypted files!Uwe.
View ArticleAnother ways to get a encrypted filesystem
First of all, very good and complete tutorial! Congratulations.Now if you want to encrypt only a partition or make a encrypted filesystem over a file you can read this:How to create a LVM encrypted...
View Articleluks passphrase
hmmm... putting the partition and passphrase on a cdrom is probably a bad idea. But is it much different than having the passphrase on a usb stick? I think having some kind of way to read a passphrase...
View ArticleColdbooting will crack HD encryption
It should be noted that, unless the machine has been powered OFF (or hibernated, not suspended) for at least several minutes, it is possible for a determined attacker to overcome any disk encryption by...
View ArticleNice
Now I know what "sightly paranoid" is meaning :-)Consider filling your laptop with epoxy for a more difficult physical access (but I guess this would result in overheating problems) For me, encrypting...
View Articlegringotts looks pretty cool
gringotts looks pretty cool (several security-related aspects were mentioned...) http://gringotts.berlios.de/(try to avoid harry potter if you want to know more :))
View ArticleEnable password in the menu.list
Hi. I got a question. I tried following what you said about putting a password under every title in the menu.list then upon reboot it does seems to put security having to type the password first before...
View ArticleUwe: Don't you think it's
Uwe:Don't you think it's time to an not-so-moderated paranoid Debian 5.x laptop setup?I've my tin foil hat ready!
View ArticleHOWTO
Maybe I'll update the HOWTO a bit, but there's no need to write a new one, the instructions are pretty much the same for newer Debian versions.
View ArticleThunderbird and Enigmail
Yeah - I use Thunderbird and Enigma for this on a public mail server :) So it is effectively encrypted, always available and I can search for accounts by mail subject in my "accounts" IMAP folder....
View Article
