What is the best file encryption for linux?

[William Muriithi]

>
> As others have said, I'm aware of 2 kinds:
>     1. cryptsetup -- block layer under the filesystem
>     2. ecryptfs -- kernel module mounted on top of directory
> Both will be transparent while mounted, so probably the easiest to use.
> If your thief steals it while turned on, then all bets are off. :-)
> --

Very true. There is 9 to 1 chance your thief will be a Windows guy and
hence likely to get confused and restart the system.

Actually this make me wonder, doesn't this mean the system is unprotected
when in suspend mode?

William
> William
>
> On Wed, Jul 18, 2012 at 11:19:11AM -0400, Walter Dnes wrote:
> >   I plan do some travelling and take along my netbook or laptop, I want
> > to be able to download+send email.  Web UI sucks.  I vastly prefer
> > downloading via "getmail".  The problem is that getmail's rc files have
> > userid+password in plain text for each account.  The risks of losing the
> > netbook/laptop are obvious.
> >
> >   What I'm thinking of doing is something like so...
> >
> > - instead of actual rc files in ~/.getmail, have symlinks pointing to
> >   non-existant files in /dev/shm (pseudo ramdrive)
> >
> > - the email retrival script would
> >   - decrypt the rc files onto /dev/shm (after asking for a passphrase).
> >     This would make the symlinks in ~/.getmail valid
> >   - download email, using the symlinked rc files in ~/.getmail
> >   - and then immediately delete the real rc files in /dev/shm
> >
> >   The symlinks in ~/.getmail would again be pointing to non-existant
> > files.  Does this sound feasable, and what encryption program should I
> > use?
> --
> The Toronto Linux Users Group.      Meetings: http://gtalug.org/
> TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://gtalug.org/pipermail/legacy/attachments/20120719/c4fe8956/attachment.html>