From owner-freebsd-questions@FreeBSD.ORG  Fri Mar 24 08:39:46 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id BE34216A401
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Mar 2006 08:39:46 +0000 (UTC)
	(envelope-from igorr@speechpro.com)
Received: from speechpro.ru (speech-tech-2.ip.PeterStar.net [81.3.190.130])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 493DA43D45
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Mar 2006 08:39:46 +0000 (GMT)
	(envelope-from igorr@speechpro.com)
Received: from [192.168.2.26] (helo=sysadm.stc)
	by s1.stc with esmtp (Exim 4.53 (FreeBSD)) id 1FMhpX-0007DJ-AJ
	for freebsd-questions@freebsd.org; Fri, 24 Mar 2006 11:39:37 +0300
Received: from localhost.stc ([127.0.0.1] helo=sysadm.stc)
	by sysadm.stc with esmtp (Exim 4.54 (FreeBSD)) id 1FMhpI-0006yR-IZ
	for freebsd-questions@freebsd.org; Fri, 24 Mar 2006 11:39:20 +0300
Received: (from igorr@localhost)
	by sysadm.stc (8.13.4/8.13.3/Submit) id k2O8dKuR026810
	for freebsd-questions@freebsd.org; Fri, 24 Mar 2006 11:39:20 +0300 (MSK)
	(envelope-from igorr)
Date: Fri, 24 Mar 2006 11:39:19 +0300
From: Igor Robul <igorr@speechpro.com>
To: freebsd-questions@freebsd.org
Message-ID: <20060324083919.GE26401@sysadm.stc>
References: <44210DFC.6000308@locolomo.org>
	<13d4d6bb0603220051x49fdb302v32bc501a81cb9a99@mail.gmail.com>
	<44211578.8050600@locolomo.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <44211578.8050600@locolomo.org>
User-Agent: Mutt/1.5.11
X-Archived: Yes
Subject: Re: encrypted drives
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Mar 2006 08:39:46 -0000

On Wed, Mar 22, 2006 at 10:14:32AM +0100, Erik Norgaard wrote:
> home partition which is fine for single user laptops, but on multiuser 
> systems, each home directory should be distinct encrypted partitions in 
> order not to disclose data to other users.
Maybe I'm wrong, but what happened with file system permissions? :-)

You can encrypt /home and then set 0700 permissions on user home
directories.