I have been working on encrypting a partition in a Fedora box and have successfully encrypted a partition(By name /test) using "cryptsetup & luks".
The below command was put up in a runcontrol file which is called during bootup to automount them during bootup.
Code:
cat /etc/rc5.d/S75my.luks
echo <password> | cryptsetup luksOpen /dev/sda8 test
mount -t ext3 /dev/mapper/test test
I have put the password in the startup file as i don't want to be prompted for a password everytime i boot up.
I understand that this methodology breaks the very purpose for which i have encrypted the partition. But this is a necessity as i am looking at putting this up for a new release and i don't want my customers to be prompted for a password and yet have the security of having an encrypted partition which cannot be decrypted if the Hard Disk is stolen.
1. Is there a way i can link this file to the hardware so that this script will run only if it the Hard disk is found in the same machine?(Something like checking against the serial number of motherboard)
2. Is there another way i can avoid prompting of password and yet ensure that Hard disk cannot be decrypted when stolen.
Note - I also understand that anybody who has a crack at the Hard disk can go into the runcontrol file and have a look at the logic. But I am short of better ideas and badly need some light. Please help.
Hello All,
I have a Red Hat Linux 5.9 Server installed with one hard disk & 2 Partitions created on it as follows,
/boot - Linux Partition & another is
LVM - One VG & under that 5-6 Logical volumes(var,opt,home etc).
Here my requirement is to take out 1GB of space from LVM ( Any logical... (5 Replies)
Hi,
im having an linux webserver located in another country and i have just SSH access.
My aim is to protect (by encryption) /home partition on which are located website files and mysql database data.
So i found "LUKS" SW which can encrypt partition, but the thing i dont understand is how... (2 Replies)
Hi all,
I'm looking for secure file encryption tools that use MAC address as encryption key. FYI, I'm using Red Hat Enterprise Linux OS.
For example: when A wants to send file to B
A will encrypt the file with B's computer MAC/IP address as an encryption key
This file can only be decrypted... (2 Replies)
There are two servers :
1. Site
2. Testing
from site server i want to connect testing server with ssh password less authentication.
i generated public and private keys with ssh-keygen -t rsa on site server.
cat id_rsa >> authorized_keys
cat id_rsa.pub >> authorized_keys
i... (15 Replies)
I've been using various versions of UNIX and Linux since 1993, and I've never run across one that showed your password as you type it in when you log in, or one that stored passwords in plain text rather than encrypted. I'm writing a script for work for a security audit, and two of the... (5 Replies)
I want to store a password of a user in a encrypted format and the use that encrypted password in my shell scripting. can any one of you let me know how to do it.
Thanks in advance (0 Replies)
I've created a partition with GNU Parted, how do I mount the partition?
The manual information at http://www.gnu.org/software/parted/manual/parted.html is good, but I am sure about how I mount the partition afterwards.
Thanks,
--Todd (1 Reply)
My dilemma,
I need to send, deemed confidential, information via e-mail (SMTP). This information is sitting as a file on AIX. Typically I can send this data as a e-mail attachment via what we term a "mail filter" using telnet. I now would like to somehow encrypt the data and send it to a e-mail... (1 Reply)
