From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bluca@comedia.it>
Received: from maude.comedia.it (maude.comedia.it [77.93.254.181])
	(using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.saout.de (Postfix) with ESMTPS
	for <dm-crypt@saout.de>; Sat, 31 Oct 2009 09:12:41 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	by maude.comedia.it (Postfix) with ESMTP id 1892686F3C
	for <dm-crypt@saout.de>; Sat, 31 Oct 2009 09:12:41 +0100 (CET)
Received: from maude.comedia.it ([127.0.0.1])
	by localhost (maude.comedia.it [127.0.0.1]) (amavisd-new, port 10025)
	with LMTP id ptRYcfXeCkFe for <dm-crypt@saout.de>;
	Sat, 31 Oct 2009 09:12:40 +0100 (CET)
Date: Sat, 31 Oct 2009 09:12:40 +0100
From: Luca Berra <bluca@comedia.it>
Message-ID: <20091031081240.GA18686@maude.comedia.it>
References: <1256933154.21609.14.camel@markov.biostat.ucsf.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1; format=flowed
Content-Disposition: inline
In-Reply-To: <1256933154.21609.14.camel@markov.biostat.ucsf.edu>
Subject: Re: [dm-crypt] advice on encrypted snapshots
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
	<mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
	<mailto:dm-crypt-request@saout.de?subject=subscribe>
To: dm-crypt@saout.de

On Fri, Oct 30, 2009 at 01:05:54PM -0700, Ross Boylan wrote:
>Does anyone have any advice about how to snapshot an encrypted volume so
>that the snapshot won't leak information?
>
Do you mean linux-lvm snapshot or some storage based one?
In the first case I think the safest way is encrypting the PV.

L.

-- 
Luca Berra -- bluca@comedia.it
         Communication Media & Services S.r.l.
  /"\
  \ /     ASCII RIBBON CAMPAIGN
   X        AGAINST HTML MAIL
  / \