Re: [PATCH] zero disk pages used by swsusp on resume

From: Pavel Machek
Date: Sun Apr 10 2005 - 14:06:45 EST

Next message: Tejun Heo: "Re: [PATCH scsi-misc-2.6 04/07] scsi: remove unnecessary scsi_delete_timer() call in scsi_reset_provider()"
Previous message: Paul Jackson: "Re: more git updates.."
In reply to: Oliver Neukum: "Re: [PATCH] zero disk pages used by swsusp on resume"
Next in thread: Andreas Steinmetz: "Re: [PATCH] zero disk pages used by swsusp on resume"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> > > > Hi! What about doing it right? Encrypt it with symmetric cypher
> > > > and store key in suspend header. That way key is removed automagically
> > > > while fixing signatures. No need to clear anythink.
>
> You might want to leave the key in the kernel image. You need to boot the
> same image anyway. Leaving the key in the header will not increase
> security while the os is down.

I believe leaving it in the header will be easier, and it is more
easily wiped, there, too.

If suspend fails, and user boots with noresume and mkswaps, key in
header will get rewritten, too. Good.
Pavel

--
Boycott Kodak -- for their patent abuse against Java.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Tejun Heo: "Re: [PATCH scsi-misc-2.6 04/07] scsi: remove unnecessary scsi_delete_timer() call in scsi_reset_provider()"
Previous message: Paul Jackson: "Re: more git updates.."
In reply to: Oliver Neukum: "Re: [PATCH] zero disk pages used by swsusp on resume"
Next in thread: Andreas Steinmetz: "Re: [PATCH] zero disk pages used by swsusp on resume"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]