Should I use gbde or geli?

Christian Baer christian.baer at informatik.uni-dortmund.de
Sun Jan 29 10:35:16 PST 2006


On Sun, 29 Jan 2006 16:42:55 +0100 Alexander Leidinger wrote:

>> One of the aces we may have is the fact that noone (including the
>> employees) will know that the information is encrypted. This way a theft
> Too late now. You already revealed this information into the public.
> Google will be able to tell the well prepared burglar about this.

Well, not really. Noone knows what company we are talking about and
since my name is never mentioned in conjunction with this company, a
possible thief may know that *I* am doing something but not for who. I'm
not *that* thick. :-)

> AFAIR Blowfish was one the main algorithms which had a lot of potential
> to get the AES sign, but in the end Rijndael won. I think it won
> because of some resource aspects, not because of security aspects. But
> I may be wrong with this.

Actually, it wasn't Blowfish but Twofish, which is supposed to be the
successer. Too bad Serpant doesn't work with GELI (yet). :-)

>> Or am I missing the point here?
> Think about one-time passwords.

That could limit the resources a little to much as those people with
access require it at a regular basis.

Regards
Chris




More information about the freebsd-security mailing list