Hard disk encryption with DM-Crypt, LUKS, and cryptsetup


Article from Issue 61/2005
Author(s): , Author(s):

If you’re serious about keeping secrets, try hard disk encryption with DM-Crypt and LUKS.

File encryption is a popular means for ensuring the security and privacy of file-based data. An intruder who breaks through your firewall won’t be able to read your private files if they are encrypted, right? Actually, selective file encryption provided by utilities such as GnuPG covers some of your tracks, but it may not cover all of them. An intruder can still learn about your system – and maybe even reconstruct some of your file data – by snooping through secret files, temporary files, configuration data, and command histories. The /var/spool/cups directory, for example, could yield a treasure trove of data about files you might have printed in the past, and tools such as the Gnome Thumbnail Factory could be storing an unencrypted thumbnail of your encrypted images.

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

comments powered by Disqus

Direct Download

Read full article as PDF:

Hard_Disk_Encryption_DM-Crypt_LUKS_cryptsetup.pdf (437.79 kB)