From: Heinz Diehl <htd+ml@fritha.org>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Basics
Date: Sun, 27 Sep 2015 20:55:54 +0200 [thread overview]
Message-ID: <20150927185554.GA15831@fritha.org> (raw)
In-Reply-To: <20150927161208.GA26184@manjaro.chello.hu>
On 27.09.2015, Mike Nagie wrote:
> As we just have concluded that a Diceware passphrase is much more
> secure, then I'd like to ask you: should I need more than one LUKS key?
What's your thread model, actually? Whom do you want to protect your
data from?
> The original idea was, creating an encrypted partition for the /home
> then I'm going to set a very strong master passphrase (I assume that
> slot 0 is the master) after that I add another LUKS key which is the
> same password as my account's.
That would reduce your password strength to the strength of the
weakest of these two.
> Does more than one LUKS key reduce the security?
A chain is only as strong as its weakest link. This law applies
perfectly also to this particular scenario.
> Does it matter if I have a really strong passphrase and a not that strong second phrase?
Think about it. It's quite obvious.
next prev parent reply other threads:[~2015-09-27 18:55 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-09-25 17:33 [dm-crypt] Basics Mike Nagie
2015-09-25 17:55 ` Mistave
2015-09-25 19:44 ` Michael Kjörling
2015-09-25 19:48 ` Michael Kjörling
2015-09-25 21:48 ` Mike Nagie
2015-09-25 22:24 ` Michael Kjörling
2015-09-25 23:03 ` Arno Wagner
2015-09-26 7:14 ` Mike Nagie
2015-09-26 7:32 ` Mistave
2015-09-26 8:27 ` Mike Nagie
2015-09-26 10:24 ` Mistave
2015-09-26 13:12 ` Robert Nichols
2015-09-26 15:38 ` Michael Kjörling
2015-09-27 11:08 ` Mike Nagie
2015-09-27 13:47 ` Michael Kjörling
2015-09-27 14:08 ` Arno Wagner
2015-09-27 14:15 ` Michael Kjörling
2015-09-27 14:34 ` Arno Wagner
2015-09-27 16:12 ` Mike Nagie
2015-09-27 16:51 ` Michael Kjörling
2015-09-27 18:20 ` Mike Nagie
2015-09-27 18:55 ` Heinz Diehl [this message]
2015-09-27 18:57 ` Heinz Diehl
2015-09-27 21:50 ` Mike Nagie
2015-09-27 22:08 ` Michael Kjörling
2015-09-28 20:11 ` Heinz Diehl
2015-09-29 10:52 ` Mike Nagie
2015-09-30 12:16 ` Mike Nagie
2015-09-30 15:00 ` Arno Wagner
2015-09-30 17:49 ` Mike Nagie
2015-09-30 19:27 ` Arno Wagner
2015-09-30 15:40 ` Heinz Diehl
2015-09-25 20:12 ` Arno Wagner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20150927185554.GA15831@fritha.org \
--to=htd+ml@fritha.org \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.