[PLUG] Fwd: laptop encryption question
Daniel Hedlund
daniel at digitree.org
Mon Jul 31 13:41:59 UTC 2006
David,
I would be happy to talk about this subject at a future PLUG meeting as
I've done quite a bit of work in this area. At some point in the future
I might also like to give a talk on virtual file systems; I could
probably merge the two since loopback encrypted filesystems would also
be of interest to the crowd.
Cheers,
Daniel Hedlund
daniel at digitree.org
David Mandel wrote:
> This would make an excellent topic for a PLUG talk.
> A lot of us now days are worrying about ways to protect data
> on stolen laptops or even have stolen equipment call or email us
> with lat/long information.
> If anyone is interested in talking on this in the future at either
> the PLUG general meeting or the advanced topics meeting, let
> me know.
>
> Sincerely,
> David Mandel
> Chief Activist
> Portland Linux/Unix Group
> 560 SE Alexander
> Corvallis, Oregon 97333
> (541) 737-9153 at work (OSU)
> (541) 730-5285 cell
>
> ======================================================================
> David Mandel http://www.DavidMandel.com
> Portland Linux/Unix Group http://pdxLinux.org
> LinuxFund http://LinuxFund.org
> ======================================================================
>
>
> On Tue, 25 Jul 2006, Steve D... wrote:
>
>
>> A friend of mine has a Linux laptop encryption question. His
>> employer has enacted a laptop encryption policy with some specific
>> requirements. Has anyone heard of an encryption project that can meet
>> the following specs? (The names have been removed to protect the
>> guilty.)
>>
>> Thanks,
>> Steve D...
>>
>> ---------- Forwarded message ----------
>>
>> XXXXX is looking for a product to encrypt our Linux laptops. Windows laptops
>> are already encrypted. If I can find something that satisfies them, I won't
>> have to run Linux on a Windows-hosted virtual machine. The unusual bit is
>> the encryption of the boot partition, I don't expect anybody's done that
>> Linux-wise.
>>
>> I'd love to hear about ANYthing that y'all think is remotely applicable:
>>
>> 1) Must encrypt the entire disk
>>
>> 2) Must authenticate the user prior to booting the OS
>> (preferably prior to the boot loader)
>>
>> 3) Must work with (most/all of) the distros that are in
>> use within XXXXX (do we even have a standard? I use Ubuntu, but I know we
>> also have RHEL and FCn around.).
>>
>> 4) Must have separate "accounts" for administration - so
>> that an administrator can decrypt a machine without knowing the user's
>> password.
>>
>> Anybody want to write a decrypting stage 1.5 for Grub?
>>
>> ---------- End Forwarded message ----------
>>
>> --
>> He who joyfully marches in rank and file has already earned
>> my contempt. He has been given a large brain by mistake,
>> since for him the spinal cord would suffice.
>> -- Albert Einstein --
>> _______________________________________________
>> PLUG mailing list
>> PLUG at lists.pdxlinux.org
>> http://lists.pdxlinux.org/mailman/listinfo/plug
>>
>>
>
>
More information about the PLUG
mailing list