Quote:
Originally Posted by Didier Spaier
What worries me is that at shutdown or reboot I see this message repeated several times when trying to remount the root file system read-only [...]
May I assume that despite the last message the root LUKS volume has been safely enough locked, or could a smart attacker overcome the locking?
|
I would not worry about data confidentiality. The hard disk is never "locked" or "unlocked" - It is encrypted
all the time. Pages are decrypted on the fly,
in RAM, when read from the disk.
If you remove the power line (or kill the VM) at any time during operation, The data on the disk is never left "decrypted" (assuming you use no swap or an encrypted swap).
On the other hand, there might be a problem of data integrity/corruption (although with a journaling file system, I wouldn't worry much).
HTH
Phil