COMPARISON & question

Adrian 'Dagurashibanipal' von Bidder avbidder@fortytwo.ch
Thu Feb 20 10:33:01 2003


--=-jGqbQnZ+imgERKqAAiDr
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Tue, 2003-02-18 at 19:54, carl w spitzer wrote:
> In linux we can have encrypted partitions which can be used to protect on
> disk information.
>=20
> In Windows there are some few other programs but still data survives in
> some form if you open a file some part of it might survive in the swap
> partition.

If you're paranoid enough to encrypt the disk, I'd strongly advise not
to use swap at all - buy a few G memory, that should be enough. (Or, if
you're desperate, encrypted swap. But I guess your system won't be
usable anymore.)

This is just imho, of course.=20

The swap problem persists even if you don't encrypt partitions, but only
certain files - perhaps script something to switch off swap before
editing these files and switch swap back on when you're finished or
something like that. wiping the swap partition before shutdown is
certainly a good idea, I'd say 'dd if=3D/dev/zero of=3D/dev/swappartition'
should usually suffice. The problem is just: are you sure that your
enemy will not come while your computer is running and the swap
partition filled with useful data? Have you got time to shut the
computer down and let it wipe the swap partition?

greets
-- vbi


--=20
	"I don't know what you mean by 'glory'," Alice said.
	Humpty Dumpty smiled contemptuously.  "Of course you don't --
till I tell you.  I meant 'there's a nice knock-down argument for you!'"
	"But glory doesn't mean 'a nice knock-down argument'," Alice
objected.
	"When I use a word," Humpty Dumpty said, in a rather scornful
tone, "it means just what I choose it to mean -- neither more nor less."
	"The question is," said Alice, "whether you can make words mean
so many different things."
	"The question is," said Humpty Dumpty, "which is to be master --
that's all."
		-- Lewis Carrol, "Through the Looking Glass"

--=-jGqbQnZ+imgERKqAAiDr
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: get my key from http://fortytwo.ch/gpg/92082481

iKcEABECAGcFAj5UoPVgGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjI/dmVyc2lvbj0xLjMmbWQ1c3VtPTE0Y2E2MTZmMTQ2ODJhODJj
YjljYzI1YzliMzRhMTBkAAoJEIukMYvlp/fW3XsAoIL28vkQ7m8Y4/L5jEgAfEWx
zuS3AKC8OOmvhIcy5todiLllLk+w+JQiaw==
=HGSg
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822?version=1.3&md5sum=14ca616f14682a82cb9cc25c9b34a10d

--=-jGqbQnZ+imgERKqAAiDr--