[CrackMonkey] encrypt it all!
Seth David Schoen
schoen at loyalty.org
Thu Jan 6 17:57:05 PST 2000
Nick Moffitt writes:
> from daily.daemonnews.com
>
> OpenBSD encrypts contents of swap space
> OpenBSD 05 January 2000
> Submitted By : Louis
>
> The OpenBSD kernel can now encrypt the contents of swap space.
> Previously, any sensitive data such as passphrases or passwords kept
> encrypted by the user would be swapped out in clear onto disk, where
> it would even survive reboots.
>
> The work done by Neils Provos uses the Blowfish cipher because it is
> strong, fast and has a big key setup. The space used is roughly the
> same but there is a small speed penalty as the page is copied and
> encrypted before it is written to disk.
>
> At the moment, the option is 'all or nothing' but the code was designed
> to support more selectivity in the future, for example to only encrypt
> the contents of a CFS encrypted file system.
OpenBSD is just a3e5a16308dad1fd7e2f02e9bf7fcd72.
--
Seth David Schoen <schoen at loyalty.org> | And do not say, I will study when I
Temp. http://www.loyalty.org/~schoen/ | have leisure; for perhaps you will
down: http://www.loyalty.org/ (CAF) | not have leisure. -- Pirke Avot 2:5
More information about the Crackmonkey
mailing list