Re: Does Solaris provide encrypted file system?

From: Rob Stampfli (restamp_at_hotmail.com)
Date: 07/12/03

• Next message: Packard, Matthew: "Re: Does Solaris provide encrypted file system?"
• Previous message: Rob Honeyman: "smpatch host problems"
• In reply to: light_wt_at_hotmail.com: "Does Solaris provide encrypted file system?"
• Next in thread: light_wt_at_hotmail.com: "Re: Does Solaris provide encrypted file system?"
• Reply: light_wt_at_hotmail.com: "Re: Does Solaris provide encrypted file system?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sat, 12 Jul 2003 15:00:22 GMT

In article <1257617d.0307111329.436b2465@posting.google.com>,
light_wt@hotmail.com <light_wt@hotmail.com> wrote:
>If Solaris doesn't, how to protect the files needing encryption type
>technology stored in file system?
>
>Sorry if it was a repeated question. Couldn't pull a straight answer
>from google. Thanks.

Matt Blaze wrote an add-on to NFS called Cryptographic File System
(CFS) many years ago, and his employer, AT&T, allowed him to release
the source. CFS runs OK on Solaris -- I've used it for years -- but
it is not bulletproof. It does not really implement an encrypted
filesystem. Rather, you create a directory hierarchy and then
"cattach" that hierarchy to a special mount point managed by CFS,
after providing the correct password to do so. At this point you
can work relatively normally in the attached directory hierarchy,
and the product of your work appears under the original hierarchy as
files with encrypted names and contents. If you really know what
you're doing, You *can* combine CFS with Solaris LOFI functionality
to implement something truly resembling an encrypted FS.

Plug "CFS Blaze" into google if you want to learn more.

Rob

---

• Next message: Packard, Matthew: "Re: Does Solaris provide encrypted file system?"
• Previous message: Rob Honeyman: "smpatch host problems"
• In reply to: light_wt_at_hotmail.com: "Does Solaris provide encrypted file system?"
• Next in thread: light_wt_at_hotmail.com: "Re: Does Solaris provide encrypted file system?"
• Reply: light_wt_at_hotmail.com: "Re: Does Solaris provide encrypted file system?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Does Solaris provide encrypted file system? ... how to protect the files needing encryption type ... > If there is no encrited file system, than you'll have to encrypt each ... but last I checked the only version of Solaris it worked on was Solaris 7. ... (comp.unix.solaris) SUMMARY: how do I REALLY delete a file? ... leaving the rest of the file system intact. ... Wipedrive doesn't seem to be available for Solaris, but might be of interest to ... run this on each filesystem where the files from ... >Solaris' UFS] do not satisfy this assumption." ... (SunManagers) Re: File systems ... No "normal" file system is secure. ... but the word you really mean is "tokens" to gain access. ... the encryption key as a token. ... (alt.computer.security) Re: Protection from a Rescue or Live CD accessing the filesystem ... CFS pushes encryption services into the Unixfile system. ... Package: encfs ... EncFS integrates file system encryption into the Unixfile system. ... PAM module to automatically mount encfs filesystems on login ... (comp.os.linux.setup) Re: I got a good security one more ya. ... I don't know yet about Ubuntu. ... shouldn't be problem because encryption should be essentially the same. ... Enclosures are "rotated" according to usual backup scheme. ... File system is XFS encrypted by AES method ... (Ubuntu)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)