encrypted drives

[Duane Whitty]

Erik Norgaard wrote:
> Hi:
>
> 1) I was thinking, what is the performance penalty of storing data on 
> an encrypted device? Sure, for writing documents, coding and stuff, I 
> guess the performance loss is insignificant, but for music and video 
> which then needs to be decrypted and then decoded, is this a problem?
>
> 2) One thing is to create an entire encrypted device for /home. But 
> that have the unfortunate consequence that other user's data is 
> unencrypted once the system is up.
>
> What would be more appropriate is a solution where each home-dir is an 
> encrypted mfs which is decrypted and mounted when the user log in, is 
> this possible?
>
> If not, then the alternative would be to have a private mfs in the 
> user's home dir which is mounted after login, but I think yet the user 
> needs root access to mount encrypted devices.
>
> Is there any possibility for users to mount their own encrypted mfs?
>
> Thanks, Erik
>
Hi Erik,

Perhaps this would interest you:

http://events.ccc.de/congress/2005/fahrplan/attachments/586-paper_Complete_Hard_Disk_Encryption.pdf

--Duane