From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from maude.comedia.it (maude.comedia.it [77.93.254.181]) (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.saout.de (Postfix) with ESMTPS for ; Tue, 20 Apr 2010 07:41:33 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by maude.comedia.it (Postfix) with ESMTP id B2B5386FD5 for ; Tue, 20 Apr 2010 07:41:32 +0200 (CEST) Received: from maude.comedia.it ([127.0.0.1]) by localhost (maude.comedia.it [127.0.0.1]) (amavisd-new, port 10025) with LMTP id 5qB474GQwpdJ for ; Tue, 20 Apr 2010 07:41:27 +0200 (CEST) Date: Tue, 20 Apr 2010 07:41:27 +0200 From: Luca Berra Message-ID: <20100420054127.GA1371@maude.comedia.it> References: <20100419163745.C906144B6C@ws5-1.us4.outblaze.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Disposition: inline In-Reply-To: <20100419163745.C906144B6C@ws5-1.us4.outblaze.com> Subject: Re: [dm-crypt] passfrase or dev_random for keyfile of a dmcrypt_swap List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: dm-crypt@saout.de On Mon, Apr 19, 2010 at 05:37:45PM +0100, Si St wrote: >What should be recommended: > >To apply either /dev/random or a passfrase for the establishment of a keyfile to a swap partition? >I am thinking about a potential crash and the consequences if the swap partition has to be used for rebuild of something. Then a /dev/random or if necessary /dev/urandom would not be so good. Unless you use swap for suspending to disk you can recreate it at boot using /dev/random, I do not particularly like the doing that tough. Since devices and partition have a tendency to change name under linux, it is fairly possible that you shoot yourself in the feet for no particular advantage. L. -- Luca Berra -- bluca@comedia.it Communication Media & Services S.r.l. /"\ \ / ASCII RIBBON CAMPAIGN X AGAINST HTML MAIL / \