[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: disk data protection

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: disk data protection
From: Dimitri Georganas <dg_(_at_)_mitc_(_dot_)_net>
Date: Thu, 04 Nov 2004 23:01:09 +0100

Otto Moerbeek wrote:

Remote password storage (on a radius i.e.) may defeat the whole purpose of encrypted file systems (why?) but as for now it seems the only answer to the question.

Retrieving a password via a encrypted, authenticated channel is not what you described. You descibed a simple password retrieval system based on some machine characteristics. No crypto involved, and so easy to sniff and replay.

The absence of an explicit reference to a secure layer while mentioning a way to identify the system hardware and fetch the password from a remote server doesn't necessarily mean I'm not going to secure the channel in whatever way, but next time I'll make sure I mention it :-)

References:
- disk data protection
  - From: Dimitri Georganas
- Re: disk data protection
  - From: Ben Goren
- Re: disk data protection
  - From: Dimitri Georganas
- Re: disk data protection
  - From: Dimitri Georganas

Prev by Date: Re: disk data protection
Next by Date: Conexant
Previous by thread: Re: disk data protection
Next by thread: Re: disk data protection
Index(es):
- Date
- Thread

Visit your host, monkey.org