From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <glkdd-dm-crypt@m.gmane.org>
Received: from mail.saout.de ([127.0.0.1])
 by localhost (mail.saout.de [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id dENSpSHksZ3D for <dm-crypt@saout.de>;
 Fri,  4 Jan 2013 18:36:24 +0100 (CET)
Received: from plane.gmane.org (plane.gmane.org [80.91.229.3])
 (using TLSv1 with cipher AES256-SHA (256/256 bits))
 (No client certificate requested)
 by mail.saout.de (Postfix) with ESMTPS
 for <dm-crypt@saout.de>; Fri,  4 Jan 2013 18:36:23 +0100 (CET)
Received: from list by plane.gmane.org with local (Exim 4.69)
 (envelope-from <glkdd-dm-crypt@m.gmane.org>) id 1TrBC7-0000kG-4O
 for dm-crypt@saout.de; Fri, 04 Jan 2013 18:36:35 +0100
Received: from ip-94-113-17-106.net.upcbroadband.cz ([94.113.17.106])
 by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
 id 1AlnuQ-0007hv-00
 for <dm-crypt@saout.de>; Fri, 04 Jan 2013 18:36:35 +0100
Received: from zkaspar82 by ip-94-113-17-106.net.upcbroadband.cz with local
 (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00
 for <dm-crypt@saout.de>; Fri, 04 Jan 2013 18:36:35 +0100
From: Zdenek Kaspar <zkaspar82@gmail.com>
Date: Fri, 04 Jan 2013 18:36:10 +0100
Message-ID: <50E7130A.8010605@gmail.com>
References: <50DF635C.90003@gmail.com> <50E6C1EC.1000307@gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
In-Reply-To: <50E6C1EC.1000307@gmail.com>
Subject: Re: [dm-crypt] Switch to XTS mode for LUKS in cryptsetup in 1.6.0
 (Was Re: [ANNOUNCE] cryptsetup 1.6.0-rc1)
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt/>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=subscribe>
To: dm-crypt@saout.de

On 01/04/2013 12:50 PM, Milan Broz wrote:
> On 12/29/2012 10:40 PM, Milan Broz wrote:
>> The testing release candidate cryptsetup 1.6.0-rc1 is available at
>>
>>    http://code.google.com/p/cryptsetup/
>>
>> Feedback and bug reports are welcomed.
>>
>> Cryptsetup 1.6.0 Release Notes (RC1)
> 
> 
> I am going to do one more important change to final 1.6.0:
> change LUKS _default_ cipher to aes-xts-plain64 with 512bits key.
> 
> Most of recent disk encryption systems switched already to XTS mode,
> also it is preferred by standards (and we are using it for very long
> time in Fedora/RHEL during installations.)

+1 for the RHEL6 standard, thx!

Z.