headers
Daniel Kozlowski | 1 Feb 2008 21:25
Picon

PKCS#11 Access

Is there any form of documentation on how to use a Smart Card (PKCS#11) Token to mount encrypted volumes ?

--
"If you put a million monkeys at a million keyboards, one of them will eventually write a Java program. The rest of them will write Perl programs."

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 0 comments |
headers
jayjwa | 11 Feb 2008 04:39

ecryptfs & 2.6.24


Will ecryptfs be made to work with 2.6.24.x series kernels? At one time I know 
there were problems of segfaults with 2.6.24 and the user-space daemon. 
Indeed, attempting to access the files while running 2.6.24.1 results in a 
segfault. I just tried ecryptfs-utils-38, and this time just starting 
ecryptfsd resulted in a series of 3 kernel oops as soon as it ran. The machine 
required a reboot and fsck'ing fsck each time.

This wouldn't be so bad to use an older kernel, but as of right now, it seems 
all modern kernels less than or equal to 2.6.24.1 (without the extra patch) 
are vulnerable to a local root exploit ( http://www.milw0rm.com/exploits/5092 
) via vmsplice.

--

-- 
Sadly, I've found that when people speak of free
speech and freedom, what they really want is for
their moral ideals and definitions of what is
objectable or not to be applied to everyone else.

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 2 comments |
headers
Michael Halcrow | 11 Feb 2008 05:24
Picon

Re: ecryptfs & 2.6.24

On Sun, Feb 10, 2008 at 10:39:02PM -0500, jayjwa wrote:
> Will ecryptfs be made to work with 2.6.24.x series kernels? At one
> time I know there were problems of segfaults with 2.6.24 and the
> user-space daemon.  Indeed, attempting to access the files while
> running 2.6.24.1 results in a segfault.

Something recently went askew with netlink. I'll take a look at it to
see if I can figure out what it is.

Or maybe I will just do away with netlink altogether and just use a
boring old device.

In the meantime, you can apply the vmsplice fix patch to your older
kernel. There's even a hack to close the vulnerability on a live
system.

Mike

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 1 comment |
headers
jayjwa | 11 Feb 2008 09:34

Re: ecryptfs & 2.6.24


On Sun, 10 Feb 2008, Michael Halcrow wrote:

-> Something recently went askew with netlink. I'll take a look at it to
-> see if I can figure out what it is.

Lots of changes in this kernel series. It broke my modem driver, 
svgalib_helper, iptable's iprange match, and of course ecryptfsd. :(

-> Or maybe I will just do away with netlink altogether and just use a
-> boring old device.

It seems like it would be more resistant to kernel changes in the future, but 
wouldn't it be more work to program?

-> In the meantime, you can apply the vmsplice fix patch to your older
-> kernel. There's even a hack to close the vulnerability on a live
-> system.

I saw the live system one, and put 2.6.24.1 + the small Feb. 10 patch from 
Bastian Blank on system #2. Now I don't know what to do, as 2.6.24.1 I've 
fixed the problems with several other modules I had and all that remains now 
is ecryptfs, while for the old 2.6.23.x series I'd have to find the pieces of 
the needed patches and apply them. All the patches I've seen so far have been 
by discussions on mailing lists, with no easy-to-download, one-file, 
patch-and-build solutions yet. I don't run a distribution, so there won't be 
any updated old 2.6.23.x series kernels; my versions are in fact the vanilla 
kernel.org versions (with local modifications). Of those, 2.6.24.1 was the 
easiest to turn into a full-fixed kernel (with a few files of code changes). 
Besides, at some point I must move to the 2.6.24 series anyway.

If I do try to use one of the various distro's patch sets, I'll have to hope 
they didn't do anything else to their kernel to change it from a vanilla one 
else it likely won't apply clean. I guess I'll have to consider my options  
carefully here. Also, it is possible to have two kernels, for the most part, 
and boot either one as needed.

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 0 comments |
headers
小梅 朱 | 22 Feb 2008 15:21
Picon
Favicon

真诚合作

TO财务.经理您好!

本公司是信誉贸易有限公司,是经政府注册的正规公
 
司。全国各大中小城市均有分公司。在全球化的发展
 
国内市场经济竞争日趋激烈!使商家\公司利润微薄!
 
贵公司作帐及销售方面是需要用到一些票据如:(电脑
 
版增值税、电脑版海关缴款书发票、普通商品发票、
 
地税、建筑安装、其它服务、广告、电脑版陆、海运
 
输发票)等……。税率可根据所开金额的大小来协商!
 
并建议长期的合作。

在我公司成立多年一直坚持以信用;所开绝对是真票。
 
在合作以代开的方式提供到位的服务,如贵公司有些疑
 
虑或担心,可上网查证或拿去税务抵扣核对确认后再付
 
款,在我公司负责的态度做到客户放心满意!如打扰您
 
宝贵时间,敬请见谅!

祝商 祺 欢迎来电咨询、洽谈!

联 系 人 : 林小姐

手 机 : 13554994006
电子邮箱:wwweeeiii888 <at> 163.com
网       址:  http://wwweeeiii998.applegold.com.cn
Q   Q    :326698210
代理商务!


愿与您共同发展

雅虎邮箱传递新年祝福,个性贺卡送亲朋! 
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
eCryptfs-devel mailing list
eCryptfs-devel <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ecryptfs-devel
Permalink | Reply | 0 comments |
headers
Cérebro & Comunicação - Desenvolvimento Pessoal | 29 Feb 2008 16:25
Picon

agenda de cursos atualizada: maro/abril 2008.

Olá,  

 

Estou enviando nossa agenda de cursos atualizada.

 

Atenciosamente,

 

Tais

CÉREBRO & COMUNICAÇÃO - DESENVOLVIMENTO PESSOAL

Curitiba - 3029-8015 / 3029-8026 / 9229-0157

 

 

PROGRAMAÇÃO NEUROLINGÜÍSTICA - CONTROLE MENTAL
Ensina a programar a mente para ter autoconfiança e autocontrole, reorganizar a vida, vencer medos e hábitos indesejados, ser mais positivo e atingir objetivos pessoais. CONSULTE TAMBÉM CURSO EM 3 CDs. Opções de turmas:

Noite: 3 a 6 de março de 2008, 2ª. à 5ª.feira, 19 às 22 h.
Sábados: 5, 12 e 19 de abril de 2008.

 

 

ORATÓRIA – COMO FALAR EM PÚBLICO COM SEGURANÇA
Ensina a falar com segurança e a causar boa impressão em palestras, reuniões, aulas e apresentações.

CONSULTE TAMBÉM CURSO EM 2CDs. Opções de turmas:

Noite: 10 a 13 de março de 2008, 2ª. à 5ª.feira, 19 às 22 h.

Sábados: 1º, 8 e 15 de março de 2008.

 

 

MEMORIZAÇÃO
Ensina a memorizar textos, assuntos de trabalho, aulas, exames, vestibulares, concursos e idiomas.

CONSULTE TAMBÉM CURSO EM  6CDs. Opções de turmas:
Noite: 17 a 20 de março de 2008, 2ª. à 5ª.feira,19 às 22h.

Sábados: 5, 12 e 19 de abril de 2008.

 

 

ENEAGRAMA – DESPERTE SEU POTENCIAL INTERIOR
Ensina a descobrir o seu tipo de personalidade e a despertar todo o seu potencial para o trabalho, relacionamentos, inteligência e afeto.

Opções de turmas:

Noite: 24 a 27 de março de 2008, 2ª à 5ª feira, 19 às 22h.

Sábados: 5, 12 e 19 de abril de 2008.

  

 

LIDERANÇA MOTIVACIONAL
Ensina a desenvolver a habilidade de liderança, ser criativo, gerar mudanças, obter o máximo de si e a motivar as pessoas para conseguir o melhor delas.

Opções de turmas:

Noite: 31 de março a 3 de abril de 2008, 2ª à 5ª feira, 19 às 22h.

Sábados: 5, 12 e 19 de abril de 2008.

 

 

LEITURA DINÂMICA COM TÉCNICAS DE ESTUDO
Ensina a ler de modo concentrado, estudar com técnica e a ler mais rápido. Opções de turmas:

Noite: 7 a 10 de abril de 2008, 2ª. à 5ª.feira, 19 às 22 h.

Sábados: 5, 12 e 19 de abril de 2008.

 

 

FORMAS DE PAGAMENTO

 

À VISTA:
R$ 155,00/pessoa/curso; pagamento feito no dia de início do curso.

Incluído no valor: apostila, certificado e café.

EM PARCELAS
2 x R$ 78,00 (R$ 156,00).
3 x R$ 55,00 (R$ 165,00).

PROMOÇÃO
Você + 1 amigo = R$ 145,00/por pessoa.
Você + 2 amigos = R$ 135,00/por pessoa.

 

 

RESERVAS & INSCRIÇÃO

 

Garanta sua vaga agora!

Faça sua reserva. Retorne este e-mail informando seu nome, curso desejado, turma e telefones (fixo e celular).

Em breve faremos contato para a confirmação da reserva.

Todos os cursos têm 12 vagas e o número mínimo para abertura é 8 participantes.

Cursos aos sábados: Manhã (8h15 às12h) ou tarde (13h30 às 17h30).

Informações: (41) 3029-8015 / 3029-8026 / 9229-0157 / 9229-0163

Horário de atendimento: 9h às 12h / 13h30 às 19h.

 

CURSOS QUE PODEM SER REALIZADOS NA SUA EMPRESA:

  • Liderança Motivacional

  • Encantar o Cliente - Qualidade no Atendimento.

  • Equipes Vencedoras

  • Habilidades em Negociação. 

  • Sucesso em Vendas. 

  • Oratória.

  • Memorização.

  • Leitura Dinâmica.

  • Programação Neurolingüística.

  • Relações Humanas & Comunicação.

  • O Eneagrama na Empresa - Como Otimizar os Recursos Humanos.

  • Inteligência Emocional no Trabalho.

  • Criatividade - O Click para o Sucesso.

  • Capacitação para Instrutores

  • Ética & Etiqueta no Trabalho

  • Redação Empresarial.

  • Supervisão Eficaz.

  • Programa de Qualidade Pessoal.

 

Clique aqui: www.cerebroecomunicacao.com.br consulte para saber sobre o conteúdo dos cursos.

Algumas empresas que realizaram treinamentos com a Cérebro & Comunicação:

ORDEM DOS ADVOGADOS DO BRASIL, ASSOCIAÇÃO COMERCIAL DO PARANÁ, TRIBUNAL DE CONTAS DO PARANÁ, FUNDAÇÃO ITAIPU, SANEPAR, ISAE / FUNDAÇÃO GETÚLIO VARGAS, ASSESPRO, SESCAP, DENSO DO BRASIL, ACADEMIA DE POLICIA MILITAR DO GUATUPE,  METAPAR, COAGRU, SINVEPEÇAS, NOVOZYMES, IMOBILIÁRIA CILAR, ROBERT BOSCH, IMPRENSA OFICIAL, ORDEM ROSACRUZ, GLOBAL TELECOM, IGREJA LUTERANA, SECRETARIA DE ESTADO DA ADMINISTRAÇÃO, IGREJA INTERNACIONAL DA GRAÇA, SERPRO, CRECI, IPE, IMAP, APADI, D.E.R., MEC, FEHOSPAR, URBS, EBCT, TRIBUNAL DE JUSTIÇA, CIMENTO ITAMBÉ, RECEITA ESTADUAL, CAIXA ECONÔMICA FEDERAL, BANCO DO BRASIL, SUPERMERCADO CONDOR, MINISTÉRIO DO TRABALHO, SENAI, GONZAGA IMÓVEIS, UFPR, UNIVERSIDADE DE PONTA GROSSA, UNICENP, FUNDACEN, UNIVERSIDADE TUIUTI, CEFET, ADEMILAR, BELPAR, SUDERHSA, PREFEITURA DA LAPA, COPEL, SANIFILL, NEODENT, EBS SISTEMAS, CABRAL MOTOR, SAS AUTOMOTIVE, MOTRIPAR, ASSOC. COML. DE COLOBO, MAQUIGERAL, ORPEC, COLÉGIO BATISTA MARANATA, CARBOMAFRA, PARANÁ CLÍNICAS, BALAROTI, SECOVI, GULIN CONSÓRCIOS, IMOBILIÁRIA FÊNIX, ECOVIA, EDITORA POSITIVO, EDITEL, ASSOC. COML. JARAGUÁ DO SUL, ASSOC.COML. DE FRAIBURGO, VIDROLAR, CAMINHOS DO PARANÁ, CATLOG LOGÍSTICA, MULTILIT,BERGUS, MICROCAMP, BIBLIOTECA PÚBLICA DO PARANÁ, EMBRATEL, AUTO ESCOLA SILVA, FURUKAWA.

Para CANCELAR o envio desta agenda retornar este email: escreva CANCELAR.

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 2 comments |
headers
Mike Davis | 1 Mar 2008 00:10
Picon

A Very Basic Issue?

I seem to have a very basic issue.

I am running OpenSuse 10.2 and am using the OpenSSL key module.
I can mount an ecryptfs in overlay mode, create a new file and read it  
back.
However, if I umount the file and remount it, using exactly the same  
options, the new file is not properly decrypted.
I would expect that I can read the file again. Am I missing something?

eng-1:~ # mount -t ecryptfs -o key=openssl:keyfile=/root/.ecryptfs/pki/ 
openssl/key.pem /secret /secret
Passphrase:
Cipher
1) Blowfish
2) CAST5
3) CAST6
4) Triple-DES
Selection [Blowfish]: 4
Enable plaintext passthrough (y/n): y
Attempting to mount with the following options:
   ecryptfs_passthrough
   ecryptfs_cipher=des3_ede
   ecryptfs_key_bytes=24
   ecryptfs_sig=2cd3f104ecab25e4
Mounted eCryptfs
eng-1:~ #
eng-1:~ #
eng-1:~ #
eng-1:~ # date > /secret/date
eng-1:~ # cat /secret/date
Fri Feb 29 14:49:22 PST 2008
eng-1:~ #
eng-1:~ #
eng-1:~ # umount /secret
eng-1:~ #
eng-1:~ # mount -t ecryptfs -o key=openssl:keyfile=/root/.ecryptfs/pki/ 
openssl/key.pem /secret /secret
Passphrase:
Cipher
1) Blowfish
2) CAST5
3) CAST6
4) Triple-DES
Selection [Blowfish]: 4
Enable plaintext passthrough (y/n): y
Attempting to mount with the following options:
   ecryptfs_passthrough
   ecryptfs_cipher=des3_ede
   ecryptfs_key_bytes=24
   ecryptfs_sig=2cd3f104ecab25e4
Mounted eCryptfs
eng-1:~ # cat /secret/date
???
k???r??|9q?r??|9q?r??|9eng-1:~ #
eng-1:~ #

Thanks in advance.
Mike Davis

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 3 comments |
headers
Michael Halcrow | 2 Mar 2008 07:36
Picon
Favicon

Re: A Very Basic Issue?

On Fri, Feb 29, 2008 at 03:10:56PM -0800, Mike Davis wrote:
> I seem to have a very basic issue.
> 
> I am running OpenSuse 10.2 and am using the OpenSSL key module.

What is your kernel version (uname -r)?

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
Permalink | Reply | 2 comments |

Gmane