encrypted swap question
Todd Denniston
Todd.Denniston at ssa.crane.navy.mil
Tue Sep 23 17:45:23 UTC 2008
DanMitton wrote, On 09/21/2008 01:18 AM:
> So, is it possible to read the passphrase from a USB drive at boot time?? :-?
>
> Thanks.
>
An alternative to the Red Hat way[0] is to use tuxonice[1].
"If you do not have a smartcard, you can store a keyfile on external media
such as a cd-rom or usb thumb drive."[2]
Tech Note that I have not as _yet_ attempted either Chris's or Alon's method,
so salt as desired. I will eventually have to use one of them.
Bias Note: for ssh-agent with DoD smart card, I have only been able to get
Alon's method working, and am not happy about fedora not including it or
enough documentation to get their method working.
[0] i.e., what Chris Snook was indicating. I suspect some of the pieces may
already be there in fedora, but it seems at times there is a bit of friction
between RH folks and anything Alon BarLev is involved with, so you will
probably have to follow all the tuxonice build directions if you go that route.
[1] http://wiki.tuxonice.net/EncryptedSwapAndRoot
[2]
http://wiki.tuxonice.net/EncryptedSwapAndRoot#head-4e7474b9357309c5f8be5563c0970e72f5483aed
--
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane)
Harnessing the Power of Technology for the Warfighter
More information about the fedora-list
mailing list