- Mail Original -
De: "Malte Gell"
À: "tux tsndcb"
Cc: gnupg-users@gnupg.org
Envoyé: Vendredi 23 Juillet 2010 21h03:53 GMT +01:00 Amsterdam / Berlin / Berne
/ Rome / Stockholm / Vienne
Objet: Re: Using pinentry-curses interactively in Linux boot process fails
(SOLVE
Hi there,
> Besides, holding a GPG encrypted keyfile on unencrypted space to open a
> LUKS/dmcrypt encrypted device, opening/decrypting the keyfile in the boot
> process by entering the correct passphrase, to finally open the
> LUKS/dmcrypt secured device seems broken to me.
Can you explain, why
On 23.07.2010, Grant Olson wrote:
> Just keep in mind that if you're not encrypting the whole disk, your
> sensitive data can leak to /tmp and swap. I'm only bringing this up
> because it seems like you've taken some elaborate steps to protect your
> data.
I second that.
Besides, holding a GP
On 7/23/10 2:52 AM, Malte Gell wrote:
>
>
> Yes and the boot partition is not encrypted, only /home But I solved it.
>
> Regards
> Malte
>
Just keep in mind that if you're not encrypting the whole disk, your
sensitive data can leak to /tmp and swap. I'm only bringing this up
because it seems
tux.tsn...@free.fr wrote
> > Yes and the boot partition is not encrypted, only /home But I solved it.
> > It was an init script issue. On openSUSE there is an init script
> > "earlyxdm" and it has overridden so to say the pinentry-ncurses program.
> > I have now edited earlyxdm and have added my
> Yes and the boot partition is not encrypted, only /home But I solved it. It
> was an init script issue. On openSUSE there is an init script "earlyxdm" and
> it has overridden so to say the pinentry-ncurses program. I have now edited
> earlyxdm and have added my own script to Requried-Start, th
Grant Olson wrote
> On 7/22/10 6:13 PM, Malte Gell wrote:
> > Hi there!
> >
> > I have the following setup: a Linux luks encrypted partition. It is
> > encrypted with a keyfile, the keyfile itself is GnuPG encrypted and
> > stored in /root
>
> ...
>
> > When I use these commands after booting,
On 7/22/10 6:13 PM, Malte Gell wrote:
> Hi there!
>
> I have the following setup: a Linux luks encrypted partition. It is encrypted
> with a keyfile, the keyfile itself is GnuPG encrypted and stored in /root
>
...
>
> When I use these commands after booting, they do what I want them to do.
>
Hi there!
I have the following setup: a Linux luks encrypted partition. It is encrypted
with a keyfile, the keyfile itself is GnuPG encrypted and stored in /root
Now I have a smartcard reader and a OpenPGP card, so I want to decrypt the
keyfile, enter the card's PIN and that's it. I wrote a lit
