From owner-freebsd-current  Tue Aug 22  1:39: 0 2000
Delivered-To: freebsd-current@freebsd.org
Received: from teletubbie.het.net.je (teletubbie.het.net.je [192.87.110.29])
	by hub.freebsd.org (Postfix) with ESMTP id D9BE737B43C
	for <freebsd-current@freebsd.org>; Tue, 22 Aug 2000 01:38:57 -0700 (PDT)
Received: by teletubbie.het.net.je (Postfix, from userid 500)
	id 4F2721B21C; Tue, 22 Aug 2000 10:38:56 +0200 (CEST)
Date: Tue, 22 Aug 2000 10:38:56 +0200
To: freebsd-current@freebsd.org
Subject: Q: encrypted swap
Message-ID: <20000822103856.A18347@teletubbie.het.net.je>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2i
From: walter@belgers.com (Walter Belgers)
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi,

Last week I was at USENIX where Niels Provos talked about his
implementation of encrypted swap in OpenBSD. What is does is
encrypting all memory that gets swapped out, keeping the encryption
keys in memory.  A test showed that all kinds of interesting things
wind up in the swap partition; Niels himself found several passwords
and his PGP passphrase on his own laptop..

So, I think having the option to use encrypted swap on FreeBSD
would be nice. Is anybody already working on this? If not, how do
I get somebody to work on it?  ;-)

Cheers,
Walter.
-- 
Walter Belgers         "Si hoc signum legere potes, operis boni in rebus
walter@belgers.com       Latinis alacribus et fructuosis potiri potes!" 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message