Re: Encrypting data on fileserver

[Ow Mun Heng <Ow.Mun.Heng () wdc com>]

On Thu, 2006-05-11 at 11:58 -0500, Nick Vaernhoej wrote:
> I have been asked to find solutions for encrypting the shares of the
> company fileserver and I am not even sure this is possible.
> Can I somehow encrypt the contents of a fileserver and then install a
> client on the company workstations so that all this is invisible to the
> end users?


I would think that this is a possibility. An example of this would be
using an application (cross platform) such as TrueCrypt.

eg: in the FAQ:
---
Q: Can I configure TrueCrypt to start, prompt me for password(s), and
mount my volume(s) automatically whenever Windows starts?

A: Yes. To do so, follow these steps:
---

CAVEAT.. do be careful in case this happens.

Q: What will happen when a part of a TrueCrypt volume becomes corrupted?

A: One corrupted byte usually corrupts the whole block in which it
occurred (block size is either 8 or 16 bytes, depending on the block
size of the encryption algorithm used).

-----

Then there's this.

Q: It is possible to mount a single TrueCrypt volume from multiple
operating systems (for example, a volume shared over network)?

A: Yes, but the volume must be mounted in read-only mode under each of
the systems 
-----

SO.. your mileage will greatly vary..



-- 
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
98% Microsoft(tm) Free!! 
Neuromancer 11:48:29 up 5 days, 22:18, 3 users, load average: 0.09,
0.03, 0.01