[dm-crypt] Fwd: Re: Crypting a filesystem using an asymmetric GPG key ?
Christoph Anton Mitterer
mitterer at physik.uni-muenchen.de
Sun Mar 13 22:26:43 CET 2011
Hi.
$ sha512sum cryptsetup-openpgp_1.2.0.0.tar.xz
17ae152c13967181959c146ce4521bba21349afcea494183b0ec7a18f6a0687ccf7db6857e95da5c4af1e45e3732bf3e377a762c593de8724027c4399baaf54a
cryptsetup-openpgp_1.2.0.0.tar.xz
Cheers,
Chris.
----- Forwarded message from mitterer at physik.uni-muenchen.de -----
Date: Sun, 13 Mar 2011 03:09:46 +0100
From: Christoph Anton Mitterer <mitterer at physik.uni-muenchen.de>
Subject: Re: [dm-crypt] Crypting a filesystem using an asymmetric GPG key ?
To: Il Sdrucciole <sdrucciole at gmail.com>
Quoting Il Sdrucciole <sdrucciole at gmail.com>:
> Er... As far as I knew, don't OpenPGP use RSA by default ?
Well...
a) OpenPGP uses symmetric ciphers to encrypt the actual data packets
and the asymmetric algo is "just" used to encrypt the
session-key-packet which holds the key used with the symmetric cipher.
b) The OpenPGP standard doesn't mandate default algos (just some
subsets that implementations must support), and RSA is e.g. just the
choice of GnuPG (and perhaps also others).
>> Thank you alot for your answer. I would appreciate very much getting your
> script, to understand how you do things.
See the attachment, which is provided "as is".
Not that this is really made for the keyscripts framework provided
with Debian (and stealing distros like *buntu), but of course you can
modify them to work with anything you need.
Also not, if you use them with Debian: The maintainer didn't accept to
include them because... well I never really understood just a single
point why,... but if he changes other cryptsetup scripts, mine might
not longer work without being updated, too.
Cheers,
Chris.
----- End forwarded message -----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cryptsetup-openpgp_1.2.0.0.tar.xz
Type: application/x-xz
Size: 8216 bytes
Desc: not available
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20110313/4bb6487f/attachment-0001.bin>
More information about the dm-crypt
mailing list