[ltp] Suspend with crypted swap?
U Kuehn
linux-thinkpad@linux-thinkpad.org
Wed, 05 Sep 2007 18:55:33 +0200
Daniel Maier wrote:
>
>>> Is there any reason for having / plain but using crypted swap?
>>>
>> Yes there is! Any secrets that you keep in kernel will be written to
>> swap during suspend-to-disk. Do you want to have it there in clear?
>
> But you don't care about all the other data?
>
Depends on the data and the threat you/your laptop faces. Anyway, using
encrypted partitions and suspending to unencrypted swap makes really NO
sense, as the key will be written to disk in clear.
So a prerequisite for using encrypted partitions and suspend-to-disk is
an encrypted suspend image.
Regards,
Ulrich