encrypting
Taavi Burns
taavi-LbuTpDkqzNzXI80/IeQp7B2eb7JE58TQ at public.gmane.org
Sun Jan 18 19:59:21 UTC 2004
On Sat, Jan 17, 2004 at 10:28:14PM -0500, Lennart Sorensen wrote:
> intact). Fully journalled filesystems (ext3 can be, xfs is, jfs is),
> will not touch existing file data until all new data is fully commited
> to disk in unused blocks. They do allocate and copy old blocks rather
> than allow overwrites.
For fully jornalled filesystems you also have the problem whereby your
file goes through the journal, which can keep spare copies lying around.
For that matter, you have to either pin your application memory in RAM
or use an encrypted swap device, lest someone poke through swapped
memory and peek at your important info.
--
taa
Cheops Law: Nothing ever gets built on schedule or within budget.
- Robert A. Heinlein
/*eof*/
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list