From owner-freebsd-security  Tue Jul 18 16:44:36 2000
Delivered-To: freebsd-security@freebsd.org
Received: from silby.com (cb34181-a.mdsn1.wi.home.com [24.14.173.39])
	by hub.freebsd.org (Postfix) with SMTP id D3D1E37B704
	for <freebsd-security@FreeBSD.ORG>; Tue, 18 Jul 2000 16:44:29 -0700 (PDT)
	(envelope-from silby@silby.com)
Received: (qmail 28443 invoked by uid 1000); 18 Jul 2000 23:44:28 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 18 Jul 2000 23:44:28 -0000
Date: Tue, 18 Jul 2000 18:44:28 -0500 (CDT)
From: Mike Silbersack <silby@silby.com>
To: Sheldon Hearn <sheldonh@uunet.co.za>
Cc: Joachim =?iso-8859-1?Q?Str=F6mbergson?= <watchman@ludd.luth.se>,
	Greg Lewis <glewis@trc.adelaide.edu.au>, freebsd-security@FreeBSD.ORG
Subject: Re: Status of FreeBSD security work? Audit, regression and crypto
 swap? 
In-Reply-To: <44362.963907462@axl.ops.uunet.co.za>
Message-ID: <Pine.BSF.4.21.0007181838570.28415-100000@achilles.silby.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Tue, 18 Jul 2000, Sheldon Hearn wrote:

> Is it really cool?  I've always thought that crypted swap is a waste of
> time, given the fact that access to the swap device implies far more
> serious problems already.  Now that we have a reference to Niels' paper,
> though, we can see what his motivation for developing this was.

Well, according to Niels's research, he found old passwords, passphrases,
and many other such pieces of data sitting around in his swap
file.  Hence, one obtaining access to the swap file does have greater
knowledge than they would with a crypted swap.  His paper seems well
written, I suggest that you read it.

Mike "Silby" Silbersack



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message