jd@commandprompt.com ("Joshua D. Drake") writes:
>> IF they've got root, and the unencrypted data or the password / key is
>> on the machine or in memory on it, you've lost. It may make it harder
>> for them to get it, but they can.
> This is true but in answer to your question you can use something like
> cryptfs. Note that you will loose performance.
cryptfs doesn't forcibly help, because Someone Nefarious who has root
can connect to the box, and get access to the unencrypted mount point
that the postmaster is connected to.
--
let name="cbbrowne" and tld="acm.org" in String.concat "@" [name;tld];;
http://cbbrowne.com/info/spreadsheets.html
When you awake, you will remember nothing of what I have told you.