secure keys

To encrypt disks and such stuff it is much safer to create a 'real' key and not use the password itself for the encryption process.

create a secure key

A secure key gets created like this:

$ head -c 2880 /dev/urandom | uuencode -m - | head -n 65 | tail -n 64 | gpg --armour --symmetric > keyfile.gpg

use a secure key

To use the secure key simply pipe the output of gpg to cryptsetup like this:

$ gpg --decrypt keyfile.gpg | cryptsetup create ...

additional information

harry/secure_key.txt · Last modified: 2004/08/18 16:06 (external edit)
Locations of visitors to this page

Recent changes RSS feed Creative Commons License Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki