Path: csiph.com!x330-a1.tempe.blueboxinc.net!usenet.pasdenom.info!weretis.net!feeder4.news.weretis.net!nuzba.szn.dk!pnx.dk!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail From: =?iso-8859-1?q?G=FCnther?= Schwarz Newsgroups: comp.os.linux.security Subject: Re: tmps and swap Date: 9 Feb 2012 21:51:12 GMT Lines: 22 Message-ID: <9pitegF61gU1@mid.individual.net> References: <9pdh5dF5ksU1@mid.individual.net> <874nv2qnbj.fsf@araminta.anjou.terraraq.org.uk> <9pdoqsF5ksU4@mid.individual.net> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Trace: individual.net cCTT5Jjd3QyMe2eIW3X2QwgZYaezZz+x6dDjtFVPrsAmNPQAFcwL1D3Xw3 Cancel-Lock: sha1:pwrxQAruWOxKzFz7uvMf0FCBMkQ= User-Agent: Pan/0.132 (Waxed in Black) Xref: x330-a1.tempe.blueboxinc.net comp.os.linux.security:99 Stachu 'Dozzie' K. wrote: > On 2012-02-07, Günther Schwarz wrote: >> Richard Kettlewell wrote: >> >>> Günther Schwarz writes: >>>> Any hints on how to prevent a tmpfs file system to be written to the >>>> swap partition? Other than omitting a swap partition completely, of >>>> course. I do not want some files to end up on the hard disk. >>> >>> Encrypted swap, with a throwaway key generated on boot? >> >> Do you have a link on a howto for that? I need unassisted boot up, so >> typing a password at boot time is not an option. > > http://www.google.com/search?q=encrypted+swap+linux+howto This is interesting, thanks a lot. The swap partition set up with a key from /dev/urandom might well solve some other issues related to the swap partition. I will give it a try. Günther