From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <htd+ml@fritha.org>
Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.130])
 (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mail.server123.net (Postfix) with ESMTPS
 for <dm-crypt@saout.de>; Fri, 26 Jun 2015 14:59:20 +0200 (CEST)
Received: from localhost ([88.91.17.225]) by mrelayeu.kundenserver.de
 (mreue005) with ESMTPSA (Nemesis) id 0Mao5W-1ZOLPm049C-00KRZb for
 <dm-crypt@saout.de>; Fri, 26 Jun 2015 14:59:20 +0200
Date: Fri, 26 Jun 2015 14:59:18 +0200
From: Heinz Diehl <htd+ml@fritha.org>
Message-ID: <20150626125918.GA1672@fritha.org>
References: <558C16DD.60809@gmx.fr>
 <20150626123047.GB12997@tansi.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20150626123047.GB12997@tansi.org>
Subject: Re: [dm-crypt] Using a removable-device-recorded passphrase to
 decrypt a system
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt/>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=subscribe>
To: dm-crypt@saout.de

On 26.06.2015, Arno Wagner wrote: 

> My advice is to not encrypt the system partition itself, just
> all user and data partitions.

I wonder if the passphrase could leak to the unencrypted system partition in such
a scenario. E.g. memory contents dumped to disk while crashing or
similar. In fact, I don't know what is possible or not, I'm just
curious..