Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Filesystems:  Encryption?

Posted on 1998-06-07
4
Medium Priority
?
269 Views
Last Modified: 2013-11-15
Okay, here's a simple question:

On Unix filesystems, is protected data encrypted at all?

For instance, if I had hdb1 mounted as /it, and I placed a single large file owned by root, the entire size of the partition, with some regularly repeating data onto it, and set the file as read for root only, then I removed the hard drive from the system, and used another computer to directly access the data on that drive, would I get the repeating data without having to decrypt?

Obviously, I would like this answered for most of the filesystems available to UNIX systems.

Thanks.
0
Comment
Question by:mnw21
  • 2
  • 2
4 Comments
 
LVL 1

Accepted Solution

by:
m4rc earned 150 total points
ID: 1637277
i say, no.  there's no built in encryption in that manner.  as long as you can access the type of file system that /it was originally formatted and used with.
this is why you can take disks, floppies, tapes, cds, etc. from one machine to another.  to encrypt the data you use 'crypt' command or better, 'pgp'.
this is also why it is a security risk to leave mounting privs unmonitored or leave the machine open, because someone could come by w/ a rootdisk, reboot the machine of the floppy (or other attached drive) and login as thier root, mount your filesystems, and do anything they like.

0
 
LVL 1

Author Comment

by:mnw21
ID: 1637278
Sounds horrendous!

Is there *any* available filesystem that does use encryption?

The main problem with PGP is that the private key must exist on your hard drive (or floppy) somewhere, and can then be accessed by someone like you say.

Anyway, thanks. Answer worthy of a "Good!"

0
 
LVL 1

Expert Comment

by:m4rc
ID: 1637279
hmmm, an interesting question.  i'd say yes, there must be encrypted filesystems, just because ive seen hacks like that for old dos, and it seems inevitable that -someone- would make something comparable for un*x.  that said, i dont know of one in particular.
using a bizzare or rarely used files system could thwart your avg person who isnt willing to do research and implement a new fs support.
aha, or, check this out:
http://131.155.140.135/~galactus/remailers/index-diskcrypt.html
has two different filesystems.  how about that, i learned something too!  :)
0
 
LVL 1

Author Comment

by:mnw21
ID: 1637280
Cool!

Thanks.

0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Steps to fix “Unable to mount database. (hr=0x80004005, ec=1108)”.
Stellar Exchange Toolkit: this 5 in 1 toolkit comes loaded with mega-software tool. Here’s an introduction to tools’ usage and advantages:
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question