From owner-freebsd-security  Mon Jul 24 17:47:58 2000
Delivered-To: freebsd-security@freebsd.org
Received: from mail.integratus.com (miami.integratus.com [63.209.2.83])
	by hub.freebsd.org (Postfix) with SMTP id 5CEFB37B56B
	for <freebsd-security@freebsd.org>; Mon, 24 Jul 2000 17:47:53 -0700 (PDT)
	(envelope-from jar@integratus.com)
Received: (qmail 29204 invoked from network); 25 Jul 2000 00:47:51 -0000
Received: from kungfu.integratus.com (HELO integratus.com) (172.20.5.168)
  by tortuga1.integratus.com with SMTP; 25 Jul 2000 00:47:51 -0000
Message-ID: <397CE3B8.64513F33@integratus.com>
Date: Mon, 24 Jul 2000 17:47:52 -0700
From: Jack Rusher <jar@integratus.com>
Organization: Integratus
X-Mailer: Mozilla 4.73 [en] (X11; I; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: freebsd-security@freebsd.org
Subject: Re: Status of FreeBSD security work? Audit, regression and cryptoswap?
References: <Pine.BSF.4.21.0007241937560.6271-100000@achilles.silby.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Mike Silbersack wrote:
> 
> Sorry, I should've mentioned that the encryption would be on a per-file
> basis.  For example, I'd encrypt ~silby/personal and leave everything else
> untouched.  This is how TCFS/CFS works, if I understand correctly.

  Has everyone had a look at:

http://www.fs.net/

...Kevin Fu gave a nice presentation on this at USENIX.  It is a pretty
cool hack that has a nice way of handling key infrastructure for files.

-- 
Jack Rusher, Senior Engineer | mailto:jar@integratus.com
Integratus, Inc.             | http://www.integratus.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message