From mboxrd@z Thu Jan  1 00:00:00 1970
From: Hartmut Goebel <h.goebel@goebel-consult.de>
Subject: Re: Input needed regarding disk encryption/decryption
Date: Thu, 6 Oct 2016 20:51:02 +0200
Message-ID: <57F69D16.60700@goebel-consult.de>
References: <20161006025623.GA28797@khaalida>
	<20161006050414.GA12837@jocasta.intra>
Mime-Version: 1.0
Content-Type: multipart/signed; protocol="application/pkcs7-signature";
	micalg=sha-256; boundary="------------ms010601030803030303050507"
Return-path: <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:44371)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <h.goebel@goebel-consult.de>) id 1bsDl9-0001JO-04
	for guix-devel@gnu.org; Thu, 06 Oct 2016 14:51:12 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <h.goebel@goebel-consult.de>) id 1bsDl4-00012k-MS
	for guix-devel@gnu.org; Thu, 06 Oct 2016 14:51:09 -0400
Received: from mail-out.m-online.net ([212.18.0.10]:42316)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <h.goebel@goebel-consult.de>) id 1bsDl4-00012B-Bg
	for guix-devel@gnu.org; Thu, 06 Oct 2016 14:51:06 -0400
Received: from frontend01.mail.m-online.net (unknown [192.168.8.182])
	by mail-out.m-online.net (Postfix) with ESMTP id 3sqhZ104xmz3hjjw
	for <guix-devel@gnu.org>; Thu,  6 Oct 2016 20:51:04 +0200 (CEST)
Received: from localhost (dynscan1.mnet-online.de [192.168.6.68])
	by mail.m-online.net (Postfix) with ESMTP id 3sqhZ05hn2zvlXg
	for <guix-devel@gnu.org>; Thu,  6 Oct 2016 20:51:04 +0200 (CEST)
Received: from mail.mnet-online.de ([192.168.8.182])
	by localhost (dynscan1.mail.m-online.net [192.168.6.68]) (amavisd-new,
	port 10024) with ESMTP id LVz3U-HDQyJv for <guix-devel@gnu.org>;
	Thu,  6 Oct 2016 20:51:03 +0200 (CEST)
Received: from hermia.goebel-consult.de
	(ppp-188-174-138-209.dynamic.mnet-online.de [188.174.138.209])
	(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.mnet-online.de (Postfix) with ESMTPS
	for <guix-devel@gnu.org>; Thu,  6 Oct 2016 20:51:03 +0200 (CEST)
Received: from [192.168.110.2] (lenashee.goebel-consult.de [192.168.110.2])
	by hermia.goebel-consult.de (Postfix) with ESMTP id 8504760B47
	for <guix-devel@gnu.org>; Thu,  6 Oct 2016 20:51:02 +0200 (CEST)
In-Reply-To: <20161006050414.GA12837@jocasta.intra>
List-Id: "Development of GNU Guix and the GNU System distribution."
	<guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-devel/>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
To: guix-devel@gnu.org

This is a cryptographically signed message in MIME format.

--------------ms010601030803030303050507
Content-Type: multipart/alternative;
 boundary="------------050003050507060102040309"

This is a multi-part message in MIME format.
--------------050003050507060102040309
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

Am 06.10.2016 um 07:04 schrieb John Darrington:
> I understood something different by "while disk encryption".  I thought=
 it meant
> encrypting the whole disk (partition table and all) not just the partit=
ions on it.

I doubt this is possible without BIOS/UEFI support. And I'm not aware of
any such solution for Linux.

--=20
Sch=C3=B6nen Gru=C3=9F
Hartmut Goebel
Dipl.-Informatiker (univ), CISSP, CSSLP, ISO 27001 Lead Implementer
Information Security Management, Security Governance, Secure Software
Development

Goebel Consult, Landshut
http://www.goebel-consult.de

Blog:
http://www.goebel-consult.de/blog/vorratsdatenspeicherung-jetzt-verfassun=
gsbeschwerde-unterschreiben

Kolumne: http://www.cissp-gefluester.de/2010-07-passwoerter-lieben-lernen=



--------------050003050507060102040309
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: quoted-printable

<html>
  <head>
    <meta content=3D"text/html; charset=3Dutf-8" http-equiv=3D"Content-Ty=
pe">
  </head>
  <body text=3D"#000000" bgcolor=3D"#FFFFFF">
    <div class=3D"moz-cite-prefix">Am 06.10.2016 um 07:04 schrieb John
      Darrington:<br>
    </div>
    <blockquote cite=3D"mid:20161006050414.GA12837@jocasta.intra"
      type=3D"cite">
      <pre wrap=3D"">I understood something different by "while disk encr=
yption".  I thought it meant
encrypting the whole disk (partition table and all) not just the partitio=
ns on it.</pre>
    </blockquote>
    <br>
    I doubt this is possible without BIOS/UEFI support. And I'm not
    aware of any such solution for Linux.<br>
    <br>
    <div class=3D"moz-signature">-- <br>
      <span style=3D"color:black">
        Sch=C3=B6nen Gru=C3=9F <br>
        Hartmut Goebel <br>
      </span>
      <span style=3D"font-size:smaller">Dipl.-Informatiker (univ), CISSP,=

        CSSLP, ISO 27001 Lead Implementer</span><br>
      <span style=3D"font-size:smaller">Information Security Management,
        Security Governance, Secure Software Development</span>
      <p style=3D"color:black" lang=3D"de">
        Goebel Consult, Landshut <br>
        <a style=3D"color:black" href=3D"http://www.goebel-consult.de">ht=
tp://www.goebel-consult.de</a>
      </p>
      <p style=3D"color:grey;font-size:smaller">
        Blog:
        <a style=3D"color:grey !important;text-decoration:none !important=
"
href=3D"http://www.goebel-consult.de/blog/vorratsdatenspeicherung-jetzt-v=
erfassungsbeschwerde-unterschreiben">http://www.goebel-consult.de/blog/vo=
rratsdatenspeicherung-jetzt-verfassungsbeschwerde-unterschreiben</a>
        <br>
        Kolumne:
        <a style=3D"color:grey !important;text-decoration:none !important=
"
href=3D"http://www.cissp-gefluester.de/2010-07-passwoerter-lieben-lernen"=
>http://www.cissp-gefluester.de/2010-07-passwoerter-lieben-lernen</a>
      </p>
    </div>
  </body>
</html>

--------------050003050507060102040309--

--------------ms010601030803030303050507
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature
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--------------ms010601030803030303050507--