From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-bw0-f50.google.com (mail-bw0-f50.google.com [209.85.214.50]) by mail.saout.de (Postfix) with ESMTP for ; Tue, 11 Jan 2011 01:08:29 +0100 (CET) Received: by bwg12 with SMTP id 12so21926739bwg.37 for ; Mon, 10 Jan 2011 16:08:29 -0800 (PST) Sender: Richard Zidlicky Date: Tue, 11 Jan 2011 01:08:16 +0100 From: Richard Message-ID: <20110111000816.GC31936@rz> References: <4D266EF9.6090904@gmail.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="zYM0uCDKw75PZbzx" Content-Disposition: inline In-Reply-To: <4D266EF9.6090904@gmail.com> Subject: Re: [dm-crypt] Dmcrypt and hibernate key disclosure List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Aaron Lewis Cc: dm-crypt@saout.de --zYM0uCDKw75PZbzx Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jan 07, 2011 at 09:40:09AM +0800, Aaron Lewis wrote: > Hi, > If i hibernate with an device opened , before i resume , an image was > written on swap partition , will there be a problem with my secret key's > disclosure ? >=20 > Just an off-line attack , if swap is not encrypted. swap must be encrypted. Works nicely on Fedora, one boot partition and a bi= g=20 encrypted dm0 device with several LVM partitions on top of it. Richard --- Name and OpenPGP keys available from pgp key servers --zYM0uCDKw75PZbzx Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFNK59wxglR1/QGFNwRAgubAKCm9XqH20P3ac+LoXjFuKEnn6CvyQCcDSe2 DeV5WFdpthDb7Mlvao5JpE8= =w1n8 -----END PGP SIGNATURE----- --zYM0uCDKw75PZbzx--