Disk Partition

markus reichelt ml at bitfalle.org
Fri Oct 7 19:58:10 CEST 2005


* Thomas Jones <admin at buddhalinux.org> wrote:

> John W. Moore III wrote:
> >Running Knoppix from the CD I encrypted the Linux partition and
> >it's virtually invisible. (unless one knows my HD size)
> What do you mean by this statement? Are you referring to the
> /randomization of the partition by use of dev/urandom?

on a sidenote, using /dev/urandom is a bad idea. f.e. the standard
slackware install and other distros as well have the following code
(or something similar) in /etc/rc.d/rc.S:

# Carry an entropy pool between reboots to improve randomness.
if [ -f /etc/random-seed ]; then
  echo "Using /etc/random-seed to initialize /dev/urandom."
  cat /etc/random-seed > /dev/urandom
fi
# Use the pool size from /proc, or 512 bytes:
if [ -r /proc/sys/kernel/random/poolsize ]; then
  dd if=/dev/urandom of=/etc/random-seed count=1 bs=$(cat
/proc/sys/kernel/random/poolsize) 2> /dev/null
else
  dd if=/dev/urandom of=/etc/random-seed count=1 bs=512 2> /dev/null
fi
chmod 600 /etc/random-seed

Guess where's the rub...

-- 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/attachments/20051007/128bcb8e/attachment-0001.pgp


More information about the Gnupg-users mailing list