|Conor Schaefer on 14 Jul 2010 14:41:14 -0700|
On Wed, Jul 14, 2010 at 5:34 PM, Richard Freeman <email@example.com> wrote:
Maybe I'm being overly semantic here, but it's also possible to use a swapfile, as long as you manually add the swap-offset of that file on the partition on which it resides.
Anything you access is potentially written out to swap, unless the software is security conscious and locks memory that contains sensitive data. ÂActually, even then it might get swapped if you hibernate (not sure how that works - obviously it doesn't stay in RAM).
Although I'm not currently using it, there's a neat utility called uswsusp (should be in Debian repos, site here: http://suspend.sourceforge.net/) that, IIRC, supports encrypting a swap file before entering hibernation. Should be minimal config compared to some other options out there.
Typical way to encrypt swap is just create a random encryption key at each boot and forget it when the power dies. ÂSwap normally doesn't need to persist across a boot, unless you're using suspend-to-disk.
___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug