System Encryption with LUKS - ArchWiki
11 weeks ago by raphman
Solid state disk users should be aware that by default, Linux's full-disk encryption mechanisms will not forward TRIM commands from the filesystem to the underlying disk. The device-mapper maintainers have made it clear that TRIM support will never be enabled by default on dm-crypt devices because of the potential security implications; if TRIM support were enabled, an attacker may be able to tell which blocks have been used, how many blocks have been used, and other information that is exposed directly to the device when a TRIM is issued.
It may be possible to determine the filesystem utilized by your encrypted device through the data that is leaked by TRIM. Furthermore, any information that may be derived by a profile of block usage may be exposed by enabling TRIM support on an encrypted device.
As of linux version 3.1, support for dm-crypt TRIM pass-through can be toggled upon device creation or mount with dmsetup. Support for this option also exists in cryptsetup version 1.4.0 and up. To add support during boot, you will need to add ":allow-discards" to the
cryptdevice option. The option should look like this:
cryptdevice=/dev/mapper/root:root:allow-discards
For more information, including specific commands and details on dm-crypt TRIM pass-through, see these mailing list threads:
* http://article.gmane.org/gmane.linux.kernel.device-mapper.devel/14134
* http://article.gmane.org/gmane.linux.kernel.device-mapper.dm-crypt/5166
linux
encryption
ssd
howto
tips
It may be possible to determine the filesystem utilized by your encrypted device through the data that is leaked by TRIM. Furthermore, any information that may be derived by a profile of block usage may be exposed by enabling TRIM support on an encrypted device.
As of linux version 3.1, support for dm-crypt TRIM pass-through can be toggled upon device creation or mount with dmsetup. Support for this option also exists in cryptsetup version 1.4.0 and up. To add support during boot, you will need to add ":allow-discards" to the
cryptdevice option. The option should look like this:
cryptdevice=/dev/mapper/root:root:allow-discards
For more information, including specific commands and details on dm-crypt TRIM pass-through, see these mailing list threads:
* http://article.gmane.org/gmane.linux.kernel.device-mapper.devel/14134
* http://article.gmane.org/gmane.linux.kernel.device-mapper.dm-crypt/5166
11 weeks ago by raphman
Build your own EL wire power supply
11 weeks ago by raphman
Build your own EL wire power supply
howto
instructables
electronics
electroluminescence
el
11 weeks ago by raphman
Flexible Aluminum Electroluminescent Display - No Transparent Conductor Needed
11 weeks ago by raphman
Flexible Aluminum Electroluminescent Display - No Transparent Conductor Needed
electroluminescence
display
el
howto
instructables
electronics
11 weeks ago by raphman
Transparent Multi-hop SSH
11 weeks ago by raphman
It is often necessary to SSH through one host to get to another host. This article will walk you through configuring SSH so that the intermediate step is transparent.
ssh
howto
11 weeks ago by raphman
Pylogsparser : a use case, visualizing ssh attacks in video
march 2012 by raphman
In this article we will show another possible application for the pylogsparser library. We will also discover a simple way to draw and use world maps with python.
python
logging
howto
visualization
map
security
ssh
march 2012 by raphman
The Bastards Book of Ruby
january 2012 by raphman
A Programming Primer for Counting and Other Unconventional Tasks
ruby
tutorial
howto
programming
january 2012 by raphman
10 * 10 * 10 Led Cube - LED Schaltungen, Treiber und µC - LedStyles.de
december 2011 by raphman
ein Cube aus 1000 blauen Leds
led
cube
howto
diy
display
december 2011 by raphman
LED Cube 8x8x8
december 2011 by raphman
Create your own 8x8x8 LED Cube 3-dimensional display!
cube
electronics
led
diy
howto
instructables
december 2011 by raphman
All Mouse Buttons Working - ArchWiki
december 2011 by raphman
This article is for users that have a mouse with more than 7 mouse buttons and want to be able to use all of them. Logitech makes several of these (if you have a Logitech Marble® Mouse you can also look at this page), and Microsoft makes a few as well. If you have one of these mice, read on!
wiki
linux
mouse
input
howto
december 2011 by raphman
Laughton Electronics | the KimKlone: a radical 6502 redesign
october 2011 by raphman
The KimKlone represents an architectural extension of the 65C02. The most striking improvement is efficient linear access to a 16 Mbyte Address Space. Also on the short list is hardware acceleration for the Forth programming language, including a one-byte NEXT instruction and a new, stack-savvy addressing mode. To exploit these and other capabilities, the programmer has access to new instructions and new registers. (See the programming model, left.)
6502
microcontroller
hardware
electronics
howto
history
october 2011 by raphman
related tags
3d ⊕ abmeldung ⊕ academia ⊕ accessibility ⊕ acm ⊕ acpi ⊕ adaptor ⊕ admin ⊕ adventure ⊕ advice ⊕ agent ⊕ airport ⊕ alarm ⊕ algorithm ⊕ algorithms ⊕ alphabet ⊕ alsa ⊕ analysis ⊕ android ⊕ animation ⊕ anova ⊕ apache ⊕ api ⊕ apple ⊕ application_notes ⊕ archive ⊕ arduino ⊕ arm ⊕ art ⊕ article ⊕ ati ⊕ atmel ⊕ audio ⊕ auth ⊕ autostart ⊕ avr ⊕ awesome ⊕ awk ⊕ backup ⊕ bandpass ⊕ bargraph ⊕ bash ⊕ battery ⊕ beagle ⊕ benchmark ⊕ best_practices ⊕ binary ⊕ binning ⊕ bios ⊕ bitmap ⊕ bitmask ⊕ bits ⊕ bitwise ⊕ blender ⊕ blog ⊕ bluetooth ⊕ bochum ⊕ book ⊕ boot ⊕ bootsplash ⊕ branch ⊕ branching ⊕ brewing ⊕ bsd ⊕ btm-222 ⊕ bug ⊕ bulb ⊕ business ⊕ button ⊕ c ⊕ c++ ⊕ cables ⊕ caching ⊕ cacko ⊕ calculator ⊕ camera ⊕ canon ⊕ capabilities ⊕ capsense ⊕ capture ⊕ card ⊕ case ⊕ casting ⊕ cat5 ⊕ censorship ⊕ cgi ⊕ charger ⊕ chat ⊕ cheap ⊕ cheating ⊕ cheatsheet ⊕ chemie ⊕ chineses ⊕ christmas ⊕ chronos ⊕ chsh ⊕ circuit ⊕ cli ⊕ climbing ⊕ clipboard ⊕ clock ⊕ closures ⊕ cluster ⊕ cmos ⊕ cmu ⊕ code ⊕ code_review ⊕ coffee ⊕ color ⊕ comics ⊕ community ⊕ company ⊕ compiz ⊕ composite ⊕ compression ⊕ computer ⊕ conference ⊕ conferences ⊕ configuration ⊕ conosle ⊕ console ⊕ conversion ⊕ converter ⊕ cool ⊕ cpu ⊕ crack ⊕ crafts ⊕ cross-compiler ⊕ crypto ⊕ css ⊕ ctrl-c ⊕ cube ⊕ culture ⊕ cursor ⊕ customizing ⊕ cutter ⊕ cv ⊕ cyanogenmod ⊕ data ⊕ database ⊕ dcf-77 ⊕ dcop ⊕ debian ⊕ debugging ⊕ decorator ⊕ dell ⊕ demonstration ⊕ descriptors ⊕ design ⊕ devel ⊕ development ⊕ diff ⊕ diffuse_illumination ⊕ digital_photo_frame ⊕ disassembling ⊕ disk ⊕ display ⊕ distro ⊕ diy ⊕ dm-crypt ⊕ documentary ⊕ documentation ⊕ dokuwiki ⊕ download ⊕ driver ⊕ dsi ⊕ dsp ⊕ dtp ⊕ dump ⊕ e18 ⊕ eagle ⊕ ebook ⊕ education ⊕ el ⊕ electroluminescence ⊕ electroluminescense ⊕ electroncis ⊕ electronics ⊕ elementtree ⊕ elo ⊕ elvish ⊕ email ⊕ embed ⊕ embedded ⊕ emergency ⊕ emulation ⊕ encoding ⊕ encryption ⊕ endlighten ⊕ energy_harvesting ⊕ engineering ⊕ enlightenment ⊕ epia ⊕ estimating ⊕ et ⊕ etching ⊕ etherpad ⊕ example ⊕ examples ⊕ exceptions ⊕ exim ⊕ exploit ⊕ ext3 ⊕ ext4 ⊕ extension ⊕ eye ⊕ ez430 ⊕ fabric ⊕ facebook ⊕ fantasy ⊕ faq ⊕ favicon ⊕ fbo ⊕ ffmpeg ⊕ fileformat ⊕ filesystem ⊕ film ⊕ filmmaking ⊕ filter ⊕ firewall ⊕ firmware ⊕ flash ⊕ flow ⊕ flux ⊕ flv ⊕ flying ⊕ font ⊕ fonts ⊕ food ⊕ format ⊕ forum ⊕ forwarding ⊕ fpga ⊕ fps ⊕ free ⊕ freedom ⊕ freedos ⊕ fruchterman-reingold ⊕ fullscreen ⊕ fun ⊕ funny ⊕ furniture ⊕ gadgets ⊕ gallery ⊕ game ⊕ gamedev ⊕ games ⊕ gaming ⊕ gammu ⊕ gcc ⊕ gdb ⊕ gears ⊕ geek ⊕ generators ⊕ gentoo ⊕ geography ⊕ german ⊕ gez ⊕ gimp ⊕ git ⊕ git-flow ⊕ git-notes ⊕ gitflow ⊕ github ⊕ gitlab ⊕ gitolite ⊕ gitosis ⊕ globe ⊕ gnome ⊕ gnuplot ⊕ gnu_screen ⊕ google ⊕ google_scholar ⊕ gpg ⊕ gpu ⊕ graph ⊕ graphics ⊕ grml ⊕ grub ⊕ gstreamer ⊕ gui ⊕ guide ⊕ guitar ⊕ hack ⊕ hacking ⊕ hacks ⊕ handbook ⊕ harddrive ⊕ hardware ⊕ hash ⊕ hd ⊕ hdv ⊕ health ⊕ helmer ⊕ hex ⊕ hid ⊕ hide ⊕ hiring ⊕ histogram ⊕ history ⊕ horror ⊕ hosting ⊕ howto ⊖ hpc ⊕ html ⊕ html5 ⊕ htracr ⊕ http ⊕ humor ⊕ hylafax ⊕ ibm ⊕ ic ⊕ icmp ⊕ icon ⊕ ifolder ⊕ ikea ⊕ illusion ⊕ image ⊕ imagemagick ⊕ infrastructure ⊕ initrd ⊕ inkscape ⊕ input ⊕ installation ⊕ instructables ⊕ instructions ⊕ instrument ⊕ instrumentation ⊕ intel ⊕ interaction ⊕ internet ⊕ interpreter ⊕ intro ⊕ introduction ⊕ io ⊕ iphone ⊕ iptables ⊕ iris ⊕ ita ⊕ itertools ⊕ jack ⊕ jailbreak ⊕ jammer ⊕ java ⊕ javascript ⊕ jffss2 ⊕ journal ⊕ journalism ⊕ joystick ⊕ jpedal ⊕ kde ⊕ kdm ⊕ kerberos ⊕ kernel ⊕ kexec ⊕ keyboard ⊕ knife ⊕ knitting ⊕ knoppix ⊕ knots ⊕ kommander ⊕ krut ⊕ ksplice ⊕ lab ⊕ ladyada ⊕ language ⊕ laptop ⊕ laser ⊕ laser_cutter ⊕ latex ⊕ law ⊕ layout ⊕ lcd ⊕ ld ⊕ ldap ⊕ leadership ⊕ learning ⊕ led ⊕ lego ⊕ lenovo ⊕ level_design ⊕ libcanberra ⊕ libraries ⊕ library ⊕ libusb ⊕ lifehack ⊕ lifehacks ⊕ light ⊕ linker ⊕ links ⊕ linksys ⊕ linux ⊕ literature ⊕ livecd ⊕ lockpicking ⊕ logging ⊕ logic ⊕ login ⊕ lotr ⊕ lrz ⊕ luggage ⊕ luks ⊕ lvm ⊕ mac ⊕ macbook ⊕ macbookpro ⊕ mactel ⊕ magnets ⊕ make ⊕ mame ⊕ management ⊕ manual ⊕ manufacturing ⊕ map ⊕ mapreduce ⊕ maps ⊕ matplotlib ⊕ measurement ⊕ media ⊕ mediawiki ⊕ mencoder ⊕ mergesort ⊕ merging ⊕ merlin ⊕ metadata ⊕ metal ⊕ microchip ⊕ microcontroller ⊕ microwave ⊕ mipsbook ⊕ miro ⊕ mirror ⊕ mit ⊕ mobile ⊕ mod ⊕ model ⊕ modelmaking ⊕ monitor ⊕ monitoring ⊕ mount ⊕ mouse ⊕ movies ⊕ mplayer ⊕ ms ⊕ mtc ⊕ multiboot ⊕ multimedia ⊕ multitouch ⊕ music ⊕ nas ⊕ navigation ⊕ netcat ⊕ network ⊕ networking ⊕ nixie ⊕ nl ⊕ nmap ⊕ node.js ⊕ nonviolence ⊕ notebook ⊕ nuigroup ⊕ nutrition ⊕ nvidia ⊕ objective-c ⊕ odf ⊕ offline ⊕ openchronos ⊕ opencourseware ⊕ opencv ⊕ opengl ⊕ openlogos ⊕ openoffice ⊕ opensource ⊕ openssh ⊕ openssl ⊕ openstreetmap ⊕ open_science ⊕ operating_system ⊕ organization ⊕ os ⊕ oscillator ⊕ oscilloscope ⊕ oss ⊕ osx ⊕ package ⊕ packaging ⊕ packing ⊕ pacman ⊕ pam ⊕ pam_mount ⊕ paper ⊕ papercraft ⊕ paranoia ⊕ parser ⊕ parsing ⊕ password ⊕ patch ⊕ patent ⊕ patents ⊕ pc ⊕ pcap ⊕ pcb ⊕ pdaxrom ⊕ pdb ⊕ pdf ⊕ pdftk ⊕ performance ⊕ perl ⊕ personas ⊕ pgp ⊕ phd ⊕ phone ⊕ phonon ⊕ photography ⊕ photoshop ⊕ php ⊕ physics ⊕ physx ⊕ pic ⊕ plasma ⊕ plot ⊕ plover ⊕ plymouth ⊕ police ⊕ politics ⊕ pomodoro ⊕ poop ⊕ portscan ⊕ posix ⊕ postmortem ⊕ powerpoint ⊕ powershot ⊕ power_harvesting ⊕ power_management ⊕ power_supply ⊕ presentation ⊕ presentations ⊕ presenting ⊕ press ⊕ print ⊕ printers ⊕ printing ⊕ privacy ⊕ proceedings ⊕ process ⊕ processing ⊕ product ⊕ productivity ⊕ produt ⊕ programming ⊕ project ⊕ projector ⊕ projects ⊕ prompt ⊕ properties ⊕ protest ⊕ protocol ⊕ prototyping ⊕ ps3eye ⊕ psychology ⊕ pulseaudio ⊕ pusher ⊕ pyqt ⊕ pyro ⊕ python ⊕ qemu ⊕ qt ⊕ qtopia ⊕ r ⊕ r-project ⊕ radar ⊕ radio ⊕ raid ⊕ ram ⊕ randr ⊕ rant ⊕ rayson ⊕ reading ⊕ realtime ⊕ recherche ⊕ recipe ⊕ record ⊕ recovery ⊕ recruiting ⊕ reddit ⊕ redis ⊕ reference ⊕ release ⊕ remastering ⊕ remote ⊕ render ⊕ rendering ⊕ repair ⊕ reportlab ⊕ repository ⊕ reproducible_research ⊕ research ⊕ resource ⊕ resources ⊕ resume ⊕ reverse_engineering ⊕ review ⊕ rigs ⊕ roaming ⊕ robotics ⊕ rotory_encoder ⊕ rsnapshot ⊕ rss ⊕ ruby ⊕ rules ⊕ safe ⊕ satire ⊕ sbs ⊕ scanner ⊕ scenic ⊕ schematic ⊕ schematics ⊕ scientific ⊕ scifi ⊕ scm ⊕ scraping ⊕ screen ⊕ screencapture ⊕ screencast ⊕ screencasting ⊕ script ⊕ scripting ⊕ scrolling ⊕ sculpting ⊕ sd-card ⊕ sdk ⊕ sdl ⊕ search ⊕ security ⊕ sed ⊕ self ⊕ sensing ⊕ sensor ⊕ seo ⊕ serial ⊕ server ⊕ settings ⊕ setuid ⊕ sfx ⊕ sharing ⊕ sharpening ⊕ shell ⊕ shoelace ⊕ shoelaces ⊕ shoes ⊕ signal ⊕ sigops ⊕ silicon ⊕ skype ⊕ sleep ⊕ slowstart ⊕ smartcard ⊕ sms ⊕ smtp ⊕ sniffer ⊕ sniffing ⊕ social ⊕ socialnetworking ⊕ sockets ⊕ software ⊕ solar ⊕ soldering ⊕ sound ⊕ speakers ⊕ speaking ⊕ splash ⊕ ssd ⊕ ssh ⊕ ssh-agent ⊕ ssl ⊕ st2205 ⊕ stabilization ⊕ statistics ⊕ stderr ⊕ stdin ⊕ stdout ⊕ steadicam ⊕ steadycam ⊕ steampunk ⊕ stenography ⊕ stepper_motor ⊕ storage ⊕ strace ⊕ streaming ⊕ stress_test ⊕ students ⊕ subdirectory ⊕ subtree ⊕ support ⊕ surface ⊕ suspend ⊕ swf ⊕ synchronization ⊕ synth ⊕ synthesizer ⊕ sysadmin ⊕ systemtap ⊕ table ⊕ tablet ⊕ talk ⊕ tcp ⊕ tdc ⊕ tdd ⊕ tdr ⊕ teaching ⊕ tektronix ⊕ terminal ⊕ testing ⊕ tex ⊕ text ⊕ tft ⊕ theme ⊕ thinkpad ⊕ time ⊕ time-lapse ⊕ time-management ⊕ timer ⊕ timezone ⊕ timing ⊕ tiocsti ⊕ tip ⊕ tips ⊕ toggle ⊕ toilet ⊕ tolkien ⊕ toner ⊕ tool ⊕ tools ⊕ touch ⊕ toys ⊕ tps ⊕ traceroute ⊕ transcoding ⊕ transistor ⊕ translation ⊕ transparency ⊕ trap ⊕ travel ⊕ tricks ⊕ trigger ⊕ troubleshooting ⊕ tsa ⊕ tty ⊕ tuba ⊕ tufte ⊕ tunnel ⊕ tutorial ⊕ tutorials ⊕ twitter ⊕ typography ⊕ ubuntu ⊕ udev ⊕ umts ⊕ uni ⊕ unison ⊕ university ⊕ unix ⊕ url ⊕ urllib2 ⊕ usability ⊕ usb ⊕ utf8 ⊕ vacuum ⊕ vacuum_forming ⊕ vault ⊕ vbo ⊕ vcs ⊕ vendor ⊕ versioncontrol ⊕ vga ⊕ via ⊕ video ⊕ vim ⊕ virtualization ⊕ vista ⊕ visualization ⊕ vlc ⊕ vnc ⊕ vodafone ⊕ voip ⊕ vpn ⊕ watch ⊕ wearable ⊕ web ⊕ webcam ⊕ webdav ⊕ webdev ⊕ webgl ⊕ webservice ⊕ websockets ⊕ wifi ⊕ wii ⊕ wiki ⊕ wikibooks ⊕ wikipedia ⊕ windows ⊕ wireless ⊕ wlan ⊕ wm ⊕ wood ⊕ woodworking ⊕ wordpress ⊕ workflow ⊕ workrave ⊕ workshop ⊕ wpa ⊕ writing ⊕ wrt54g ⊕ x ⊕ x11 ⊕ xattr ⊕ xcomposite ⊕ xen ⊕ xgl ⊕ xlib ⊕ xml ⊕ xorg ⊕ xrender ⊕ zaurus ⊕ zsh ⊕ _da ⊕Copy this bookmark: