[dm-crypt] Fwd: Re: Crypting a filesystem using an asymmetric GPG key ?

Christoph Anton Mitterer mitterer at physik.uni-muenchen.de
Sun Mar 13 22:26:43 CET 2011


Hi.

$ sha512sum cryptsetup-openpgp_1.2.0.0.tar.xz
17ae152c13967181959c146ce4521bba21349afcea494183b0ec7a18f6a0687ccf7db6857e95da5c4af1e45e3732bf3e377a762c593de8724027c4399baaf54a   
cryptsetup-openpgp_1.2.0.0.tar.xz

Cheers,
Chris.

----- Forwarded message from mitterer at physik.uni-muenchen.de -----
     Date: Sun, 13 Mar 2011 03:09:46 +0100
     From: Christoph Anton Mitterer <mitterer at physik.uni-muenchen.de>
  Subject: Re: [dm-crypt] Crypting a filesystem using an asymmetric GPG key ?
       To: Il Sdrucciole <sdrucciole at gmail.com>

Quoting Il Sdrucciole <sdrucciole at gmail.com>:
> Er... As far as I knew, don't OpenPGP use RSA by default ?
Well...
a) OpenPGP uses symmetric ciphers to encrypt the actual data packets   
and the asymmetric algo is "just" used to encrypt the   
session-key-packet which holds the key used with the symmetric cipher.

b) The OpenPGP standard doesn't mandate default algos (just some   
subsets that implementations must support), and RSA is e.g. just the   
choice of GnuPG (and perhaps also others).

>> Thank you alot for your answer. I would appreciate very much getting your
> script, to understand how you do things.
See the attachment, which is provided "as is".
Not that this is really made for the keyscripts framework provided   
with Debian (and stealing distros like *buntu), but of course you can   
modify them to work with anything you need.
Also not, if you use them with Debian: The maintainer didn't accept to  
  include them because... well I never really understood just a single  
  point why,... but if he changes other cryptsetup scripts, mine might  
  not longer work without being updated, too.


Cheers,
Chris.


----- End forwarded message -----

-------------- next part --------------
A non-text attachment was scrubbed...
Name: cryptsetup-openpgp_1.2.0.0.tar.xz
Type: application/x-xz
Size: 8216 bytes
Desc: not available
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20110313/4bb6487f/attachment-0001.bin>


More information about the dm-crypt mailing list