<< | Thread Index | >> ]    [ << | Date Index | >> ]

Subject: Re: Additional security for laptops...
From: Damion Wilson <dwilson,AT,ibl,DOT,bm>
Date: Fri, 17 Jan 2003 19:19:12 +0100
In-reply-to: <XFMail.030117164328.gregory.hosler@eno.ericsson.se>

Instead of all that, why not put the key on a USB solid state disk ($20) or 
use something like a JavaRing ? Why not put the whole CIPE config on the 
thing ? Run ciped-cb from inittab and it'll keep dying until the key becomes 
accessible.

DKW

On Friday 17 January 2003 11:58 am, Bill Cox wrote:
> It's a good thing I'm not a real sys-admin, and have a regular day job
> as a programmer.  I've been letting people take our source code out of
> the office without encrypting the source code partition!  I'm definitely
> looking into this.
>
> Thanks for the tip.
>
> Bill
>
> Les Mikesell wrote:
>
> From: "Gregory Hosler" <gregory.hosler,AT,eno,DOT,ericsson,DOT,se>
>
> >>the password is on the root partition (in /etc/cipe, which by definition
> >
> >*will*
> >
> >>be in the root partition). if you're gonna encrypt the root partition,
> >> and
> >
> >then
> >
> >>lend out the laptop, you need to release the password for the root
> >> partition, otherwise you might as well not lend out the laptop in the
> >> first place.
> >
> >You can mount a different partition on /etc/cipe or make the directory
> >a symlink to one on an encrypted partition, or change the invocation
> >of ciped-cb to use the -o option with the options  file residing anywhere
> >you want.
> >
> >--
> >  Les Mikesell
> >    lesmikesell,AT,attbi,DOT,com
> >
> >
> >
> >--
> >Message sent by the cipe-l,AT,inka,DOT,de mailing list.
> >Unsubscribe: mail majordomo,AT,inka,DOT,de, "unsubscribe cipe-l" in body
> >Other commands available with "help" in body to the same address.
> >CIPE info and list archive:
> > <URL:http://sites.inka.de/~bigred/devel/cipe.html>





<< | Thread Index | >> ]    [ << | Date Index | >> ]