From owner-freebsd-questions@FreeBSD.ORG Wed May 26 12:39:28 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D93FE16A4CE for ; Wed, 26 May 2004 12:39:28 -0700 (PDT) Received: from fw.farid-hajji.net (fw.farid-hajji.net [213.146.115.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7498A43D2F for ; Wed, 26 May 2004 12:39:28 -0700 (PDT) (envelope-from cpghost@cordula.ws) Received: from fw.farid-hajji.net (localhost [127.0.0.1]) by fw.farid-hajji.net (Postfix) with ESMTP id DAB7E40826; Wed, 26 May 2004 21:38:37 +0200 (CEST) From: Cordula's Web To: simon.bates@utoronto.ca In-reply-to: <40B4D997.10807@utoronto.ca> (message from Simon Bates on Wed, 26 May 2004 13:53:27 -0400) X-Mailer: Emacs-21.3.1/FreeBSD-4.10-BETA References: <40B4A372.5020506@utoronto.ca> <40B4D997.10807@utoronto.ca> Message-Id: <20040526193837.DAB7E40826@fw.farid-hajji.net> Date: Wed, 26 May 2004 21:38:37 +0200 (CEST) cc: freebsd-questions@freebsd.org Subject: Re: File encryption: bdes or gpg X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: cpghost@cordula.ws List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2004 19:39:29 -0000 > >>1. bdes(1) > >> > >>2. gpg -c (/usr/ports/security/gnupg) > >> > >>3. gpg (/usr/ports/security/gnupg) with a public/private key pair for me > >>plus a passphrase > > > > > > 4. gbde (on FreeBSD >= 5.X) encrypts a whole filesystem. > > It is much easier to use than utilities that encrypt > > single files. > > > > 5. bdes/idea/gpg/... on top of gbde (storing an encrypted file > > on an encrypted filesystem). The openssl(1) binary can also be used to encrypt individual files using a lot of possible ciphers. But you need to be careful with it, because you can very easily shoot yourself in the foot ;-) -- Cordula's Web. http://www.cordula.ws/