I have a very specific task that I need to accomplish. I want to encrypt a partition on a Suse 10.1 machine. The encrypted partition will house MYSQL databases.
It is important that the data is always encrypted when the machine is turned off or restarted. It is also important that the encrypted partition is mounted at boot-time (i.e.- prompts user for passphrase) and BEFORE THE MYSQLD service starts. I do not want the mysqld service to encounter errors at boot-time, because the partition is not ready or unavailable.
I have been given two recommendations:
(2) TrueCrypt (www.truecrypt.org
My Question: Is one of the solutions above better than the other for my specific problem? If you have experience with either solution, do you have any warnings / caveats / advice?