Grendel wrote:
> >
> > While mounted? No. Root has access to the entire machine and
> Why not? Just never decrypt data on fs read. Feed the client with encrypted
> data and leave it to them to decrypt it.
>
Then it's not an encrypted **FILESYSTEM**. Application level encryption
is a whole other matter. Even so, root can intercept the client process
and read the data out of its memory.
-hpa
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Wed Feb 23 2000 - 21:00:26 EST