From owner-freebsd-security  Mon Jul 24 19:16:25 2000
Delivered-To: freebsd-security@freebsd.org
Received: from ares.trc.adelaide.edu.au (ares.trc.adelaide.edu.au [129.127.246.5])
	by hub.freebsd.org (Postfix) with ESMTP
	id CBC7637B764; Mon, 24 Jul 2000 19:16:13 -0700 (PDT)
	(envelope-from glewis@ares.trc.adelaide.edu.au)
Received: (from glewis@localhost)
	by ares.trc.adelaide.edu.au (8.9.3/8.9.3) id LAA42182;
	Tue, 25 Jul 2000 11:46:07 +0930 (CST)
	(envelope-from glewis)
From: Greg Lewis <glewis@trc.adelaide.edu.au>
Message-Id: <200007250216.LAA42182@ares.trc.adelaide.edu.au>
Subject: Re: Status of FreeBSD security work? Audit, regression and crypto swap?
In-Reply-To: <Pine.BSF.4.21.0007241608300.20680-100000@freefall.freebsd.org>
 from Kris Kennaway at "Jul 24, 2000 04:12:17 pm"
To: Kris Kennaway <kris@FreeBSD.org>
Date: Tue, 25 Jul 2000 11:46:07 +0930 (CST)
Cc: freebsd-security@FreeBSD.org
X-Mailer: ELM [version 2.4ME+ PL70 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Kris Kennaway wrote:
> On Mon, 24 Jul 2000, Mike Silbersack wrote:
> 
> > Encrypting at that low of a level wouldn't be very useful in the long
> > run.  For an encrypted filesystem to be truly useful, each user's files
> > are encrypted with their own key.  A partition-wide encryption doesn't
> > protect anything if you get root hacked on your box.
> 
> Except this breaks the Unix filesystem semantic that you can read other
> people's files (if they have to provide their key manually and it is not
> pre-available), which is probably necessary for system operation. Unless
> all of the keys were available in the kernel without user intervention and
> stored persistently (perhaps encrypted by a master key), which sort of
> defeats the purpose unless you have somewhere "better" to store the key
> table than on disk.

TCFS can share files between members of a group starting with version 2.2.
More details at http://tcfs.dia.unisa.it/group-sharing.html.

-- 
Greg Lewis 				glewis@trc.adelaide.edu.au
Computing Officer			+61 8 8303 5083
Teletraffic Research Centre


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message