HOWTO Encrypt the swap space using dm-crypt and baselayout

From Gentoo Linux Wiki

This article is part of the HOWTO series.

Installation • Kernel & Hardware • Networks • Portage • Software • System • X Server • Gaming • Non-x86 • Emulators • Misc

This article is part of the Security series.

[edit] Introduction

This article should allow you to encrypt your swap space using a relatively simple and straight-forward method (i.e. accessible to human beings), that is still secure for "normal" usage and recommended by the Official Gentoo Documentation.

[edit] Cryptography

For the time being, please follow the Gentoo Forums thread that triggered this article and the Official Documentation article:

Warning: "New" exploit found which makes encrypted swap (or any encrypted hdd for that matter) very vulnerable. Unplug power without proper shutdown, quickly boot up with exploit kernel, dump contents of ram to disk, find key, get at data! See: http://citp.princeton.edu/memory/. However do check this relevant discussion on the Genoo Mailing List, where users were somewhat skeptical on the "reality" of the threat.

This article is still a Stub. You can help Gentoo-Wiki by expanding it.

Retrieved from "http://www.gentoo-wiki.com/HOWTO_Encrypt_the_swap_space_using_dm-crypt_and_baselayout"