LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 11-21-2005, 07:31 PM   #1
Frogular
LQ Newbie
 
Registered: Apr 2005
Posts: 7

Rep: Reputation: 0
Loop-aes vs DM-crypt


I'd like to know the current consensus on whether loop-aes or dm-crypt is the preferred method of encryption; what their relative advantages and disadvantages are.

I have also read that dm-crypt has more known weaknesses than loop-aes and I was wondering if that is still the case for dm-crypt > 2.6.10.
 
Old 11-23-2005, 06:29 AM   #2
ddaas
Member
 
Registered: Oct 2004
Location: Romania
Distribution: Ubuntu server, FreeBsd
Posts: 452

Rep: Reputation: 30
loop-aes is obsolete. that means it's old and not supported anymore.
dm-crypt (with luks) is the new standard for disk encryption.
Without doubts you should go for dm-crypt (with luks).


Advantage of dm-crypt over loop-aes:
- new standard, supported, future, etc etc
- no need to patch the kernel. The support for dm-crypt is already in the 2.6.x official kernel.
- if you use luks (Linux Unified key setup) there is the possibility to have more passpharase (max 5) for the encryption key. You could add/delete passphrases
- the key (with all the parameters - key length, algorithm etc) resides on you encryption partition at the first bloks of your hdd. This means that you can take you hard-drive and insert into another system(the kernel must be compiled with dm-crypt support) and it should work without any other modification from the user point of view.
- Maybe there are also other

If I am wrong, please correct me.


ddaas
 
Old 07-18-2006, 10:14 AM   #3
bugmenot60
Member
 
Registered: Mar 2006
Posts: 47

Rep: Reputation: 15
loop-aes, dm-crypt, etc

I personally use losetup -e AES256 on my Knoppix 4.0 live CD.

How secure is this?
 
Old 12-26-2007, 03:13 PM   #4
pturing
LQ Newbie
 
Registered: Apr 2007
Posts: 3

Rep: Reputation: 0
Quote:
Originally Posted by ddaas View Post
loop-aes is obsolete. that means it's old and not supported anymore.
This is not true. loop-aes is still being maintained. As of today, the last update was 2 months ago.


Quote:
Originally Posted by ddaas View Post
- the key (with all the parameters - key length, algorithm etc) resides on you encryption partition at the first bloks of your hdd.
This is one of the reasons to use loop-aes... the idea being that the attacker has an advantage if they have access to the key. See section 8 of the loop-aes README file - http://loop-aes.sourceforge.net/loop-AES.README
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
AES vs RC4 vs TKIP jspsandhu Linux - Security 4 07-19-2005 08:50 AM
loop aes digi691 Linux - Security 6 05-27-2005 09:11 PM
kernel 2.6.8mdk with AES wingcom Linux - Software 0 01-17-2005 05:50 AM
loop-aes movery Linux - Security 0 01-14-2005 08:29 AM
loop-AES dm-crypt and Gentoo PrimusXPrimus Linux - Software 1 10-12-2004 05:18 PM


All times are GMT -5. The time now is 07:37 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration