11-01-2008
Giordano,
I looked at the CRYPTSETUP and LUKS for Linux and found it lacking your specific requirements. I was trying to find what I actually used a few years ago. I believe it was Matt Blaze's
CFS, described here by Linux Journal (free subscription required)
Using CFS, the Cryptographic Filesystem.
CFS does not guarantee that root cannot get access to the files. However, it can make it very difficult on hardenened systems where even root cannot access /proc/$$/mem. For more info, see the last paragraph on page 4 of
Matt's paper.
Here are quite a few other possibilities:
http://www.usenix.org/events/usenix0...tml/index.html
I leave you with some other links that might be relevant:
Download TCFS 3.0b2 for Linux
I believe the risk here is that a root user, who exists on the host where your filesystem is mounted, can "su " to the user that has already entered
CryptFS, whose original authors describe their work here:
Cryptfs: A Stackable Vnode Level Encryption File System
And I think is downloadable here:
Download DM CryptFS 0.3.2 for Linux
Also note
Download cryptmount 3.1 for Linux which contains the following description:
Quote:
After the initial configuration of the encrypted filesystem, an ordinary user can mount and unmount the filesystem on demand, solely by providing the decryption password.
10 More Discussions You Might Find Interesting
1. IP Networking
i have one private network with one ip address, and i have a seperate network on a seperate ip address.
now, each network is behind a firewall/router. now what i want to do is be able to access one server on the second network from a computer on the first., but with the private ip address, (this... (2 Replies)
Discussion started by: norsk hedensk
2 Replies
2. Solaris
Hi everyone,
I'm looking to hire for private lessons a individual who is presently working as a unix system administrator or instructor in school who is teaching unix. I live in Clifton nj my nubmer is Cell **no phonenumbers on this forum** or email
**no emails on this forum** please let me... (1 Reply)
Discussion started by: john furman
1 Replies
3. IP Networking
Hi all,
Currently we are in the progress of setting up a private network on all of our Sun Solaris servers. Purpose is to move all backup tasks to the private, hence reduce load on public network.
Some of our servers only consists of 1 network card but with several ports. Shall we purchase... (10 Replies)
Discussion started by: *Jess*
10 Replies
4. Shell Programming and Scripting
How might I write a shell script that queries a user for information that is sensitive (say a password)-- and does something like:
Password? ******** <---- the user's entered information
or
Password? <---- the user's entered information
... (0 Replies)
Discussion started by: Prodiga1
0 Replies
5. Solaris
I have a Oracle dbase running in a Solaris 10 cluster and have two private interconnects that are being used for communication. Is there any way to connect these two interconnects together using IPMP for redundancy? I've made several attempts with no luck so far and was wondering if anyone had... (17 Replies)
Discussion started by: goose25
17 Replies
6. OS X (Apple)
Hello, whilst editing sudoers at 07:24 this morning via visudo I noticed that there are two files which get changed simultaneously as shown below. Then in fact what I noticed is that /private/etc contains exactly what /etc contains.
Why is this? What is the difference between these two... (2 Replies)
Discussion started by: michellepace
2 Replies
7. Windows & DOS: Issues & Discussions
Hello,
I have a desktop which has two network cards installed on it and I connected these two card through a hub.
On the desktop in have installed a Windows Vista Home Edition SO and a Windowx XP SO in a virtual way. I also had intalled a Virtual BOX software and Windows XP run through it.
By... (1 Reply)
Discussion started by: zendcool
1 Replies
8. Shell Programming and Scripting
I have two types of files
pubring.pkr
secring.skr
secring.skr is encrypted and not able to read.
How can i read secring.skr in text format after decrypting ?
is there any way of decrypting this file?
Unix HP - UX Version. (4 Replies)
Discussion started by: airesh
4 Replies
9. Post Here to Contact Site Administrators and Moderators
Hi,
As i am recieving private messages, i am unable to reply to them. Could you please enable my private messages.
Thanks! (2 Replies)
Discussion started by: Amulya
2 Replies
10. What is on Your Mind?
Well I have just noticed over the years that I have PMs that I have not seen or even known about.
Apologies if any of you have not had any replies to your PMs. It is too late now as some go back to my early days on here.
The notification that comes up currently has notified me of a couple... (10 Replies)
Discussion started by: wisecracker
10 Replies
LEARN ABOUT DEBIAN
webcommon.urlencode
WebCommon.urlEncode(3kaya) Kaya module reference WebCommon.urlEncode(3kaya)
NAME
WebCommon::urlEncode - URL encode a string
SYNOPSIS
String urlEncode( String x )
ARGUMENTS
x The string to encode
DESCRIPTION
URL encode a string. You should use this to encode reserved characters in URLs that you wish to be passed literally.
// trying to pass "http://www.example.com" as a parameter
url = "http://localhost/test.cgi?url=";
url += urlEncode("http://www.example.com");
// url = http://localhost/test.cgi?url=http%3A%2F%2Fwww.example.com
Note that in the example above, encoding the whole URL would be incorrect - that would create a relative URL beginning "http://".
AUTHORS
Kaya standard library by Edwin Brady, Chris Morris and others (kaya@kayalang.org). For further information see http://kayalang.org/
LICENSE
The Kaya standard library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public
License (version 2.1 or any later version) as published by the Free Software Foundation.
RELATED
WebCommon.urlDecode(3kaya)
Kaya October 2012 WebCommon.urlEncode(3kaya)