Re: [dm-crypt] Boot from fully encrypted disk which looks like unused

All of lore.kernel.org
 help / color / mirror / Atom feed

From: dhvvcb@lavabit.com
To: Arno Wagner <arno@wagner.name>
Cc: dm-crypt@saout.de
Subject: Re: [dm-crypt] Boot from fully encrypted disk which looks like unused
Date: Mon, 23 May 2011 09:35:52 +0600	[thread overview]
Message-ID: <1306121752.2138.43.camel@localhost> (raw)
In-Reply-To: <20110523001308.GB1338@tansi.org>

On Mon, 23/05/2011 в 02:13 +0200, Arno Wagner wrote:
> In practice it is basically never necessary to hide encryption.
> Either it is perfectly legal for you to refuse handing over the
> keys

That is only true if you live in a civilized country. However even in GB
there is a law that requires you to hand over the key, otherwise you are
considered as a criminal. 

> or the presence of a large, random-looking partition or file
> is already enough that they can lock you up and demand the key.

That is not necessarily the case. Assume you live in a lawful country.
They should prove that a random-looking partition contains sensible
information. There is presumption of innocence. And you always may
declare that you clean the disk from private photo, for example. However
if a partition contains an indication that it is encrypted, such as luks
header, and even prompts to enter a password, they can justly demand
this password (if there is an appropriate law).

So I still think that a bit of overhead to hide encryption may
considerably increase security.

next prev parent reply	other threads:[~2011-05-23  3:28 UTC|newest]

Thread overview: 7+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-05-22 15:53 [dm-crypt] Boot from fully encrypted disk which looks like unused dhvvcb
2011-05-23  0:13 ` Arno Wagner
2011-05-23  3:35   ` dhvvcb [this message]
2011-05-23  7:09     ` Milan Broz
2011-05-23 17:20       ` PsiStormYamato
2011-05-24  4:33       ` dhvvcb
2011-05-23  7:45     ` Arno Wagner

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1306121752.2138.43.camel@localhost \
    --to=dhvvcb@lavabit.com \
    --cc=arno@wagner.name \
    --cc=dm-crypt@saout.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.