Solved

Filesystems:  Encryption?

Posted on 1998-06-07
4
260 Views
Last Modified: 2013-11-15
Okay, here's a simple question:

On Unix filesystems, is protected data encrypted at all?

For instance, if I had hdb1 mounted as /it, and I placed a single large file owned by root, the entire size of the partition, with some regularly repeating data onto it, and set the file as read for root only, then I removed the hard drive from the system, and used another computer to directly access the data on that drive, would I get the repeating data without having to decrypt?

Obviously, I would like this answered for most of the filesystems available to UNIX systems.

Thanks.
0
Comment
Question by:mnw21
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 1

Accepted Solution

by:
m4rc earned 50 total points
ID: 1637277
i say, no.  there's no built in encryption in that manner.  as long as you can access the type of file system that /it was originally formatted and used with.
this is why you can take disks, floppies, tapes, cds, etc. from one machine to another.  to encrypt the data you use 'crypt' command or better, 'pgp'.
this is also why it is a security risk to leave mounting privs unmonitored or leave the machine open, because someone could come by w/ a rootdisk, reboot the machine of the floppy (or other attached drive) and login as thier root, mount your filesystems, and do anything they like.

0
 
LVL 1

Author Comment

by:mnw21
ID: 1637278
Sounds horrendous!

Is there *any* available filesystem that does use encryption?

The main problem with PGP is that the private key must exist on your hard drive (or floppy) somewhere, and can then be accessed by someone like you say.

Anyway, thanks. Answer worthy of a "Good!"

0
 
LVL 1

Expert Comment

by:m4rc
ID: 1637279
hmmm, an interesting question.  i'd say yes, there must be encrypted filesystems, just because ive seen hacks like that for old dos, and it seems inevitable that -someone- would make something comparable for un*x.  that said, i dont know of one in particular.
using a bizzare or rarely used files system could thwart your avg person who isnt willing to do research and implement a new fs support.
aha, or, check this out:
http://131.155.140.135/~galactus/remailers/index-diskcrypt.html
has two different filesystems.  how about that, i learned something too!  :)
0
 
LVL 1

Author Comment

by:mnw21
ID: 1637280
Cool!

Thanks.

0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your app took Google’s lash recently, here are the 5 most likely reasons.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Viewers will learn how to use the Hootsuite Dashboard.
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question