[nycbug-talk] OpenBSD Crypto Disk Question
Roland Dowdeswell
elric at imrryr.org
Mon Jan 15 12:41:36 EST 2007
On 1168555039 seconds since the Beginning of the UNIX epoch
Ray Lai wrote:
>
>On Thu, Jan 11, 2007 at 05:26:20PM -0500, Johnny C. Lam wrote:
>> Isaac Levy wrote:
>> >
>> > I'm wondering this:
>> >
>> > Is there any reliable way to make an encrypted volume on OpenBSD on
>> > the fly? (like on FreeBSD, using disk images (file-backed memory
>> > disks).
>> >
>> > I've got a stock 4.0 install on a box, and now want to stuff some
>> > data on an encrypted volume.
>>
>> On OpenBSD, I think this is svnd(4), which is prepared with vnconfig(8).
>> AFAIR, it does only Blowfish encryption.
>
>While having more choices would be nice, please don't read that as
>"blowfish is insecure."
Make sure that you use -K rather than -k or your encrypted volume will
be vulnerable to offline dictionary attacks rather trivially.
--
Roland Dowdeswell http://www.Imrryr.ORG/~elric/
More information about the talk
mailing list