[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor uses swap?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor uses swap?
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Tue, 4 Jan 2011 10:13:00 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 04 Jan 2011 10:13:07 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=0yEYzUmjMp39Nh+wM8iJXA/wOSw1uSqaVHP46miHDBY=; b=xKdjPbfKqIjWXa0I6kVACgwm4CEKU4w6m2Cg9IHd0T1OvLpIA2Fbm13mBU3lBPkC66 BGR4dQ+nMQpU8UFd0YRpxN7yZUd8ZxfSjBQIwZ2gg/O7aiH8KazdmxyJD2Q7VRWaaIe3 +OQ7NpTSOQc4yGi3YxOSd9+hMAoxX0NN89/ko=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=tbVlkc/XChGq+wN/F3lKG/0uMjrzLEvA4Lo68a2s9597fH0dMcMR3A8SeSMrl833ld LilJGSJzLlJjSUUuDOCyqpCNl6PIGF5nkKmC4JusQhCukocUYzUnZOHL9k3LTxJSz8vZ KeI3RIlSRmXHaD/30n9i6kypAh8BdpFNMT7+s=
In-reply-to: <1294147518.16559.1413408865@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <1294146849.6784.1413407807@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <20110104131638.GC3242@xxxxxxxxxxxxxx> <1294147518.16559.1413408865@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

OT, I know, but this is information that all tor node operators should have.

On Tue, Jan 4, 2011 at 8:25 AM,  <andre76@xxxxxxxxxxx> wrote:
> I sure would LOVE to know an easy way to encrypt my swap. ÂMy plan had
> been to do a fresh reinstallation of Ubuntu 10.04 on my dual-boot
> machine but I got to the "encrypt the disk" portion of the installation
> using Alternate CD and quit. ÂThere were too many questions or settings
> that I had no idea what to enter.

If you have a separate swap partition it is very easy to encrypt it on
all GNU/Linux systems.

If you use an ephemerally keyed swap you don't even have to provide a
password at bootâ it will use a new random key at every reboot.

First edit /etc/crypttab, and add a line (or create the file):

swap /dev/sda9 /dev/urandom swap,cipher=aes-lrw-plain,size=256

(replace "sda9" with the name of your swap device, "swapon -s" will
tell you. It is important that you get this right.)

Then edit /etc/fstab and change the swap line to

/dev/mapper/swap        swap                    swap    defaults        0 0

Reboot and your swap will be encrypted (cryptsetup status swap will
give you information on the volume).
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Tor uses swap?
  - From: Steve Crook

References:
- Tor uses swap?
  - From: andre76
- Re: Tor uses swap?
  - From: Roger Dingledine
- Re: Tor uses swap?
  - From: andre76

Prev by Author: Re: Key length and PK algorithm of TOR
Next by Author: Re: Tor uses swap?
Previous by thread: Re: Tor uses swap?
Next by thread: Re: Tor uses swap?
Index(es):
- Author
- Thread