> The most preferable way would be a crypted-filesystem wherein you
> would have a swap- file.
Well, the "hard" part about a crypted filesystem is how do you get the
key into the system. If it's on disk, the bad guys can find it, if you
require the operator to enter it, the operator needs to be present at
a reboot.
But "swap space" is different: It is completely acceptable if the
kernel grabs a random key from the entropy pool on the first swap.
Roger.
-- ** R.E.Wolff@BitWizard.nl ** http://www.BitWizard.nl/ ** +31-15-2137555 ** *-- BitWizard writes Linux device drivers for any device you may have! --* "I didn't say it was your fault. I said I was going to blame it on you."- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/