[dm-crypt] LUKS and LVM
nicolasbock at gmail.com
Sat Feb 19 20:12:04 CET 2011
-----BEGIN PGP SIGNED MESSAGE-----
On 02/19/11 12:08, Arno Wagner wrote:
>> Why use random data to overwrite? Shouldn't /dev/zero be enough since
>> the crypto should produce good randomness on disk?
> It is only marginally slower this way and there may be issues
> with initialisation vectors in disk encryption. There are
> no that I know of with the current cryptsetup defaults. This
> is just a very cheap additional layer of protection.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
More information about the dm-crypt