Date: Tue, 18 Jul 2000 18:44:28 -0500 (CDT) From: Mike Silbersack <silby@silby.com> To: Sheldon Hearn <sheldonh@uunet.co.za> Cc: Joachim =?iso-8859-1?Q?Str=F6mbergson?= <watchman@ludd.luth.se>, Greg Lewis <glewis@trc.adelaide.edu.au>, freebsd-security@FreeBSD.ORG Subject: Re: Status of FreeBSD security work? Audit, regression and crypto swap? Message-ID: <Pine.BSF.4.21.0007181838570.28415-100000@achilles.silby.com> In-Reply-To: <44362.963907462@axl.ops.uunet.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 18 Jul 2000, Sheldon Hearn wrote: > Is it really cool? I've always thought that crypted swap is a waste of > time, given the fact that access to the swap device implies far more > serious problems already. Now that we have a reference to Niels' paper, > though, we can see what his motivation for developing this was. Well, according to Niels's research, he found old passwords, passphrases, and many other such pieces of data sitting around in his swap file. Hence, one obtaining access to the swap file does have greater knowledge than they would with a crypted swap. His paper seems well written, I suggest that you read it. Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0007181838570.28415-100000>