[Haifux] Nested disk encryption
Eli Billauer
eli at billauer.co.il
Fri Sep 17 00:19:31 MSD 2010
Hi and thanks to those who answered.
Since nobody stood forward and told me I'm going to do something stupid,
I took some courage, and pulled my little stunt. As one could expect, it
worked like a clockwork. I never did an exhaustive test, but settled for
what I really needed to do, which was storing around 20 GB of data in
files of different sizes and shapes, in the secured image. Which is not
a negligible operation.
I kept a look on /var/log/messages and nothing special appeared there.
The only annoyment was that the computer becomes extremely sluggish
during a heavy copy operation (despite ionice), but that is also true
when going directly on the single-encrypted LVMed RAID disk (or maybe
this is true on whatever disk?).
I wrote a small script which turns a plain file into an encrypted ext4
image. I prefer having a script wipe out my disk because I got the bash
programming wrong over having the same effect because of not being
concentrated for a split second.
You can have a look, even try it out and then NOT blame me:
http://billauer.co.il/blog/2010/09/encrypted-disk-image-dm_crypt-luks/
Gmar Hatima Tova,
Eli
--
Web: http://www.billauer.co.il
More information about the Haifux
mailing list