Slackware :: File Permission About Encrypted Swap
May 28, 2010
I use the follow command to create a encrypted swap:
Code:
bash# echo "cryptswap /dev/sda5 none swap" >> /etc/crypttab
and edit the 'fstab' file :
Code:
/dev/sda6 / ext4 defaults 1 1
/dev/mapper/cryptswap swap swap defaults 0 0
That's work fine, but I found the permission of '/dev/mapper/cryptswap' is like this:
Code:
hello@world:~$ ls -l /dev/mapper/cryptswap
brw-rw-r-- 1 root disk 253, 4 2010-05-28 12:55 /dev/mapper/cryptswap
Other users can read the file '/dev/mapper/cryptswap', does it harm the system's security ?
View 4 Replies
ADVERTISEMENT
Jul 1, 2010
I read an article earlier that suggested the swap partition is encrypted by default if you select an encrypted /home folder during installation, is that true (for Lucid)? I am suspecting it isn't because my hibernation works, which I believe shouldn't be the case?
View 3 Replies
View Related
Feb 15, 2010
I have installed ubuntu via the alternate installer, activating encrypted home directories, which in turn enabled to have encrypted swap partitions and disabled hibernation (suspend-to-disk). I understand the arguments for having an encrypted swapspace in these cases. However, I'd like to be nevertheless able to hibernate. Now that the system is already set up, I cannot change and completely encrypt my harddisk via LUKS+LVM as it is suggested in numerous places.Instead, I tried the following. I created two swap partitions (sda7 and sda: one being encrypted via cryptsetup, to be used as a 'real' swap (sda7). Another without encryption, which is not listed in /etc/fstab, so that it is not normally used by the system. I have then configured uswsusp in order to use sda8 as a resume partition:
[code]...
I have decided to encrypt the resume image - I don't care entering a password once every time I resume, it just shouldn't be at every boot. And this way, I can have hibernation without the uncomfortable solution of having my decrypted, open files on the disk as clear text. However, as sda8 is not 'mounted' when I want to suspend, I get the following error:
[code]...
When I try to suspend now, it works. The image seems to get correctly written to sda8. However, on reboot, the image does not seem to be detected and the system is not resuming. I end up with a fresh login screen. would be also to unmount sda8 upon resume, is this better done by entering a hook in /etc/pm/sleep.d or can I just continue in the wrapper script above by executing s2disk.unwrapped only by calling it (without 'exec'), and entering a swapoff line behind it?
View 1 Replies
View Related
Feb 21, 2011
i started on the "Installation & Upgrades" Forum. So this is basically a repost. I configured an encrypted swap during the installation process of my kubuntu maverick using the manual install CD. I do not use LVM. This worked fine but I made the mistake of assigning a password to the encrypted swap. I would like to change this in favor for a random key. I tried to change /etc/crypttab in the following way:
[code]...
Now the system still asks for a password for sda7_crypt at startup, but does not recognize the old password. It seems that the swap gets a random key and works fine anyway, so I really want to remove only the question for the PW at boot time. This is not a big issue, but it is annoying. When the system is up I can do swapoff and swapon without problems and no password is needed. Directly after boot swap works:
[code]...
View 1 Replies
View Related
Apr 30, 2016
I installed Debian 8 Jessie with full disk encryption and chose to have everything on the same partition. After install, I notice that my 8GB laptop has a 16GB swap. Is there a way to reduce the swap to 8GB (or maybe 4) whilst not affecting the encryption?
I have a 1TB HDD so space is not an issue but I dislike such waste. The setup used LVM.
View 2 Replies
View Related
Feb 23, 2011
I've chosen to encrypt my swap partition while I was installing opensuse 11.3 on my PC.
I want to know how I can change its password(passphrase)?
View 2 Replies
View Related
May 8, 2010
I've set up a Lucid system with software RAID and encryption, with three encrypted partions - swap (/dev/md1), the root filesystem (/dev/md2), and /home (/dev/md3). The unencrypted /boot partition is /dev/md0.
This works well but the passphrase had to be entered three times at bootup. Obviously it would be preferable to enter the passphrase once to unlock the root partition, then have the others unlocked via key files. So I added key files to the swap and home partitions and modified /etc/crypttab to use them:
Code:
md1_crypt UUID=8066adbc-584c-4766-b188-bc2a7b61a2f0 /root/keys/swap-key luks,swap
md2_crypt UUID=bac82294-f3b9-45e4-89ad-407cf8b19b7b none luks
md3_crypt UUID=7d82a0b7-c811-4cc3-9fe7-1961c74b5ff2 /root/keys/home-key luks
The key files are owned by root and have 0400 protection. (The /root/keys
[Code].....
Since the swap partition is no longer referenced in fstab or crypttab, why is there still a bootup password prompt for it? What else needs to be done to stop it?
View 1 Replies
View Related
Mar 20, 2011
Does one need to Check the Swap filesystem, from time to time
View 4 Replies
View Related
Jan 5, 2010
I've just started using ubuntu one. However, some of the files I store on there are sensitive so I encrypt them using seahorse. Right click, encrypt etc etc. My question is, is there a way to automatically get the encrypt process to delete the un-encrypted file when it makes the new encrypted copy?
View 6 Replies
View Related
Oct 29, 2014
Setting up a randomly passworded swap partition in Debian installer with the default settings (aes-xts-plain64 w/ AES-256 key strength) gives the following line in /etc/crypttab:
Code: Select all####_crypt /dev/#### /dev/urandom cipher=aes-xts-plain64,size=256,swap
However according to cryptsetup manpage when using XTS mode the key size must be doubled so in effect the 'size=256' parameter above is actually resulting in AES-128 strength, no? To get 256 bit key length the size option should be set to 512. Quote from cryptsetup manpage:
For XTS mode (a possible future default), use "aes-xts-plain" or better "aes-xts-plain64" as cipher specification and optionally set a key size of 512 bits with the -s option. Key size for XTS mode is twice that for other modes for the same security level.
View 3 Replies
View Related
Aug 16, 2010
RAM for older machines like I use is fairly cheap these days. But flash memory is just as cheap or cheaper. So I'd like to ask about the feasibility of expanding my system's memory using flash memory. And about whether creating a partition for swap on the flash memory, or whether a swap file on the flash device, is the better way to go.
By flash memory I have in mind mainly USB sticks or what are sometimes called "pen drives." But I do also have CF and SD cards that, with the proper cheap adapter (one of which I already own for adapting CF) could be used to create extra swap space. So, what is the current consensus on the feasibility/advisability of using flash memory for swap? I've read about the limited write cycles of flash being an argument against using it for swap. But recent reading indicates to me that the limited write cycles problem applies mostly to older, smaller-capacity flash memory. Some will come out and say that, for larger-capacity flash memory, the life of the device is likely to exceed the amount of time your current computer will be useful (I think I've seen estimates in the range of 3-4 years life--minimum--for newer, higher-capacity flash memory).
A more persuasive argument I've heard against using flash memory for swap is that access times for these devices can be much slower than SATA, and maybe even IDE, hard drives. That would certainly dictate against using flash memory for swap.
So, how about some input on this issue? Anyone using flash memory for swap? If so, what kind (e.g., usb stick or SD/CF)? Are you using a swap file or a swap partition? How's system performance? Likewise, has anyone had flash-memory-used-as-swap die on them? The consequences would undoubtedly be dire. Also, has anyone measured flash memory access times to confirm or refute claims about slow access times? Are some types of flash memory better/worse than others in terms of access times?
View 2 Replies
View Related
May 18, 2011
I'm using ubuntu 11.04, I'm having some problem of ownership while sharing folder/files. to share i change the folder share option:1. Share this folder, then followed by 2.allow others to create and delete files in this folder3. guest access.Now if someone in my local network edit any file and save it, it gets locked. if some one copy their file in this folder the permission is marked as "no group" "no owner". and they get unaccessible to me. i tried doing chown <user> <folder> but it says Operation not permitted. Now how i can possibly share my folder on local network so that they can be edited by others without getting locked down , if they copy files i can able to modify them.
View 2 Replies
View Related
Jan 6, 2010
I am running Slackware 13.0 on an computer with low memory (128 MB, i thought). When I type "free -m" in xterm terminal it displays.In the last line it displays only 5 MB used of 687. Is that normal?
View 1 Replies
View Related
Oct 19, 2010
I got two problems. Problem 1 the sound is kind of sketchy..I thought the sound card got blown. But I heard my friend got sound on it again before we put Slackware on. Next I left him to install it while I went to class. I don't think he put a swap in. The computer is painfully slow and it can't even switch users because it looks like the ram got murdered or something. My Questions are how to test / get a working sound card. I did do the alsamixer I think the command is and turn the volume levels up yet I don't hear anything.
As far as the swap partions I don't there is one but I am not sure how to look / check to where if he made it to small or not at all.
View 3 Replies
View Related
Jan 16, 2011
I've seen posts revolving around this issue on many different forums but none really have given and answer to the problem that i've seen thus far. so I'm trying to connect to a wireless network with WPA/WPA2 encryption. Every time WICD gets to the point where it searches for a DHCP server but cannot aquire an IP address. This only happens if the network is encrypted though. If I take the encryption of the network I can connect no problem. Looking in the wicd.log file I find a few errors that I have searched for but cannot find any answers.
2011/01/16 15:19:37 :: Connecting to wireless network The_Welchs_Media
2011/01/16 15:19:37 :: Running command ['wpa_cli', '-i', 'wlan0', 'terminate'] failed: [Errno 2] No such file or directory
2011/01/16 15:19:37 :: Putting interface down
2011/01/16 15:19:37 :: Releasing DHCP leases...
[Code]....
I'm kind of lost as to why I'm getting the no such file or directory outputs along with the PSK generation failure.
View 3 Replies
View Related
Nov 29, 2010
I'm using slackware about a month now and two days ago I checked to see the usage of my RAM and I saw that there was no swap, no used, no total, nothing! (how can this be?) swap -s returned nothing, I checked fstab and there was swap there so I entered the line about swap:
"UUID=6ea9269a-6bf7-4486-b481-a54dd3bde314 none swap sw 0 0"
I believe it' s correct. I checked after restart with "free" and the total was ok but used is 0. I copied about 5 GB to see what would happen and still nothing. RAM was nearly full but still no swap used!
View 6 Replies
View Related
Jun 2, 2010
While this is the second notebook I've had the luxury of running Slackware on, I have never used the the suspend to RAM / swap functions so all of this is new to me. With this new notebook and new installation of Slackware 13.1 I decided to give it a shot as it's definitely a power sucker. The machine is a Lenovo W510 with an NVidia graphics card running KDE. When I tell KDE to go to Sleep (RAM suspension) it looks like it does so properly by blanking the screen and pushing things to RAM. Is there a way to verify that Sleep is working? Anyway after unlocking the system my mouse pointer is no longer visible, however it is still active as I can hover over items to reveal their popups.
At this point none of my conky displays are transparent anymore, nor are they actively displaying stats. The windows I have set to display with 88% opacity are no longer as such and are completely opaque. It is as if all the custom window settings are ignored. If I move the the mouse towards the bottom of the screen the screen starts to go crazy with this rainbow of colors across the top of the screen and the only way to get out of this is to press Ctrl-ESC to bring up a System Activity window. I have not tried Hibernate yet as I would like to get this resolved first. Is Slackware 13.1 supposed to be able to Sleep/Hibernate with no special configuration and creation of scripts provided that the system can handle these functions?
View 10 Replies
View Related
Dec 22, 2009
Slackware 13.0, about to install it. I do have an existing Ubuntu installation with a roomy 5 GB of swap.
In the installer of Slackware, what should I do to use this swap?
View 5 Replies
View Related
Jun 7, 2010
I recently swapped from ubuntu to slackware. It's all functioning, minus the wireless network. Decided to forgo my usual fluxbox desktop for the features in KDE until I get ready to swap back (not sure what programs I'll have to add to startup in flux yet). I'm using a toshiba satellite L305-S5957 with a Realtek 802.11b/g wireless-LAN adapter. Not sure if it's a hardware problem or if I just don't know how to connect with kde.
View 14 Replies
View Related
Dec 17, 2008
I am trying to get Slackware 12.2 running on a system with two identical harddiscs using RAID-1, LVM and LUKS.
Here is what I get:
Code:
The system is still the same, however, the results of upgrading or installing 12.2 are different. The system refuses to boot. The screen messages during boot seem to suggest, that the RAID system is "seen" by the system, but the encrypted filesystem is not.
I can boot with the installation DVD, however, and
Code:
View 14 Replies
View Related
Jun 3, 2010
Did a fresh install of 13.1 using lvm for the first time. I created swap in the logical volume but forgot to add it when I ran through the install. Do I need to just add an entry to my fstab and then swapon -va?
View 4 Replies
View Related
Oct 24, 2010
I have a system with 2G of memory and swap memory of 4G.
This is the output from :
PHP Code:
How could they do to the memory cache to be used as much? Because, occasionally, swap is used and note that the system could use the memory cache does not swap ...
Slackware current 64 multilib.
View 6 Replies
View Related
Sep 26, 2010
Currently running Slackware64 13.1 on a notebook and for the most part everything works fine. Only problem I am running into is with hibernation, where sometimes it will go into hibernation without a hitch and sometimes it will stall after blanking the screen and never turning off. For the most part pm-suspend.log looks fine every time, whether it goes into hibernation or not. My current system has 12GB of RAM and my swap partition is roughly 12GB. For the most part my RAM usage right before going into hibernation is always under 1.5GB with maybe 600MB floating in the swap partition. Could the size of my swap partition be too small even if RAM usage is nowhere near max?
View 9 Replies
View Related
Feb 24, 2011
I was reading this tutorial & it shows swap at the beginning of drive. [URL]
Although I've already installed slackware & put the swap at the back of os, I would still like to know the benefits and purpose of putting at the beginning.
View 14 Replies
View Related
Jan 12, 2010
I'm trying to automount my encrypted Windows partition in Slackware-Current.
With help from the Gentoo wiki, I came up with this script:
Code:
Then I added this to my fstab:
Code:
I get this error when I try to mount my partition (as root):
Code:
Error: Unable to initialize gtk, is DISPLAY set properly?
But if I run my script like this (exactly how mount runs it), it works fine:
Code:
New script
Code:
View 2 Replies
View Related
Jan 12, 2010
My Windows partition is using system encryption (preboot authentication) and I'm trying to access it in Linux.I run this command:
Code:
sudo truecrypt --mount --password="MYPASSWORD" --mount-options="system" --fs-options="umask=000" /dev/sda4 /mnt/windows
[code]...
View 2 Replies
View Related
Jul 25, 2010
Trying to do an install with encrypted lvm. I have made it to the end of the install and chroot /mnt and then ran mkintrd which added the modules successfully but then when I ran lilo again I got an error saying that said "fatal: can not open: /etc/lilo.conf".
View 1 Replies
View Related
Dec 24, 2009
I wanted to dual-boot Ubuntu and slackware, and use one swap. Well, I had Ubuntu installed and used installed slackware, and the boot hangs when I try to boot into the latest kernel; it says it's waiting for a UUID = (some random characters. I tried to enter a recovery mode for the latest kernel, and I couldn't even log in as root or my log in.
View 2 Replies
View Related
Jun 9, 2010
I often swapped window managers between fluxbox kde and gnome back when I ran ubuntu to suit my needs. When I installed slackware, I picked KDE because of the convenient app suite. I don't wish to uninstall kde but I'd like to be able to pick which environment I use when I swap to a GUI. Something like a flag, startx --fluxbox.
View 2 Replies
View Related
Feb 5, 2011
The swap partition says that it is empty. When I installed Slackware I'm sure that I pointed to the right place for the swap. Or does it not show any size because none of it is being used?
fdisk -l
Code:
root@Jacob:~# fdisk -l
Disk /dev/sda: 750.2 GB, 750156374016 bytes
255 heads, 63 sectors/track, 91201 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00051094
Device Boot Start End Blocks Id System
/dev/sda1 1 122 979933+ 82 Linux swap
/dev/sda2 * 123 2554 19535040 83 Linux
/dev/sda3 2555 91201 712057027+ 83 Linux
free -m
Code:
root@Jacob:~# free -m
total used free shared buffers cached
Mem: 3286 1303 1982 0 365 517
-/+ buffers/cache: 421 2864
Swap: 0 0 0
View 5 Replies
View Related
