From owner-freebsd-questions@FreeBSD.ORG Wed May 26 10:52:48 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4136516A4CE for ; Wed, 26 May 2004 10:52:48 -0700 (PDT) Received: from internet.potentialtech.com (h-66-167-251-6.phlapafg.covad.net [66.167.251.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0E8E943D41 for ; Wed, 26 May 2004 10:52:48 -0700 (PDT) (envelope-from wmoran@potentialtech.com) Received: from potentialtech.com (pa-plum1c-102.pit.adelphia.net [24.53.179.102]) by internet.potentialtech.com (Postfix) with ESMTP id 207C569A71; Wed, 26 May 2004 13:51:37 -0400 (EDT) Message-ID: <40B4D928.4010809@potentialtech.com> Date: Wed, 26 May 2004 13:51:36 -0400 From: Bill Moran User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6) Gecko/20040506 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Simon Bates References: <40B4A372.5020506@utoronto.ca> In-Reply-To: <40B4A372.5020506@utoronto.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-questions@freebsd.org Subject: Re: File encryption: bdes or gpg X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2004 17:52:48 -0000 Another option that you didn't even bring up: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html If you're not using 5.x, then this isn't available to you yet. But I thought I'd bring it up in case you weren't aware of it. Simon Bates wrote: > Dear all, > > I am fairly new to FreeBSD and this is my first post to > freebsd-questions. I hope I am asking my question in the correct forum. > Apologies if not. > > I am hoping someone can give me advice on file encryption. I would like > to encrypt a file and store it on my filesystem. I would like to encrypt > the file so that my data is not readable by someone who gains root > access or physical access to my computer. I do not intend to share the > data with anyone else so a public/private key system is optional. > > I did some Googling and some reading of man pages and I have come up > with 3 options thus far: > > 1. bdes(1) > > 2. gpg -c (/usr/ports/security/gnupg) > > 3. gpg (/usr/ports/security/gnupg) with a public/private key pair for me > plus a passphrase > > I would really appreciate any pointers to discussions of the relative > merits of these approaches or pointers to better options if available. > > Thank you all very much for your time. Best wishes, > Simon > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > -- Bill Moran Potential Technologies http://www.potentialtech.com