You could also look at truecrypt.<div><a href="http://www.truecrypt.org/">http://www.truecrypt.org/</a></div><div><br></div><div><a href="http://www.truecrypt.org/"></a>It works with windows and linux and has hidden partitions accessible with different authentication.<br>
<br><div class="gmail_quote">2009/10/28 Ari <span dir="ltr"><<a href="mailto:sothisistheinternet@gmail.com">sothisistheinternet@gmail.com</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Phillip Bennett wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Ari wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi all,<br>
<br>
Okay, I need some guidance here. I've helped a mate get started with<br>
linux and he's happy using a FC11 install as a samba server (he wanted a<br>
copy of what I had, but with more hard drives for backing up his video<br>
editting, documents, etc etc). All is well with that, but after a recent<br>
theft he's worried about his files being accessed if the server or the<br>
backup drives are stolen. I'm not really sure where to start for<br>
encrypting things but still having them available to all his windows<br>
PCs. He has 3TB of storage drives (the FC11 install is on a separate<br>
small 40GB drive) with the entire drives shared via samba. I've got him<br>
using rsync for his backups to his external usb drives. Is it possible<br>
to encrypt the samba shared drives and still have samba be able to use<br>
them? What about the backups with rsync? I'm reluctant to admit I've<br>
never worked with encryption on linux drives before, and I know I really<br>
really should have as it's the sort of security measure that I should<br>
know about. Help please :-(<br>
<br>
TIA,<br>
<br>
Ari<br>
_______________________________________________<br>
PLUG discussion list: <a href="mailto:plug@plug.org.au" target="_blank">plug@plug.org.au</a><br>
<a href="http://www.plug.org.au/mailman/listinfo/plug" target="_blank">http://www.plug.org.au/mailman/listinfo/plug</a><br>
Committee e-mail: <a href="mailto:committee@plug.linux.org.au" target="_blank">committee@plug.linux.org.au</a><br>
<br>
<br>
<br>
</blockquote>
<br>
Hi,<br>
<br>
You could always try out LUKS encryption. It's pretty standard with<br>
RedHat and probably fedora - my home box is off right now, so can't<br>
check for you.. Basically, you create an encrypted partition that gets<br>
opened at boot with a password. You can even dictate the strength of<br>
the encryption when you set it up. Once it's opened with the password,<br>
it will be seen by the operating system as just another block device<br>
that can be formatted as whatever you like (etx2/3, fat32, etc..) so<br>
samba would be able to see it and share it as if it was just another<br>
filesystem. Once powered off, the encrypted data is inaccessible<br>
without the password. We use it here in the Scottish Blood Service for<br>
keeping patient data secure on our mobile devices (laptops).<br>
<br>
Hth,<br>
Phil.<br>
<br>
</blockquote>
<br>
Thank you Phil, this sounds like it could be just the thing.<br><font color="#888888">
<br>
Ari<br>
_______________________________________________<br>
PLUG discussion list: <a href="mailto:plug@plug.org.au" target="_blank">plug@plug.org.au</a><br>
<a href="http://www.plug.org.au/mailman/listinfo/plug" target="_blank">http://www.plug.org.au/mailman/listinfo/plug</a><br>
Committee e-mail: <a href="mailto:committee@plug.linux.org.au" target="_blank">committee@plug.linux.org.au</a><br>
</font></blockquote></div><br><br clear="all"><br>-- <br>Scott Middleton<br>Managing Director - AssureTek<br>Email - <a href="mailto:Scott@assuretek.com.au">Scott@assuretek.com.au</a><br>Phone - 1300 551 696<br>Mobile - 0400 212 724<br>
<br>
</div>