Douglas A. Tutty-2 wrote: > > If the box is running but no users are logged-in, why can't the data be > encrypted and therefore private? >
It can be. Use OpenSSL or GnuPG or PGP symmetrically (only store the passphrase in your head) in addition to volume/disk level encryption. Tar up your secret files, encrypt the tar file and then remove the secret files. When you need to read the secret files, decrypt the tar and then extract what you need. Wash, rinse and repeat. Cron a sh script to dd /dev/zero onto the home partition until it's full (don't want sophisticated guys viewing your unallocated space)... know what I mean? Man, this is getting a bit paranoid. -- View this message in context: http://www.nabble.com/new-home-box-for-secure-data-storage-tp20235167p20275760.html Sent from the openbsd user - misc mailing list archive at Nabble.com.
