Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentes Révision précédente Prochaine révision | Révision précédente Prochaine révision Les deux révisions suivantes | ||
doc:veille:chiffrement [2007/10/23 21:55] lehobey |
doc:veille:chiffrement [2008/10/29 22:43] lehobey |
||
---|---|---|---|
Ligne 2: | Ligne 2: | ||
===== Thèmes ===== | ===== Thèmes ===== | ||
- | * [[GPG]] | + | * [[GnuTLS]] |
+ | * [[GPG]] et [[doc:ma clef GPG]] | ||
* [[Droit de chiffrer]] | * [[Droit de chiffrer]] | ||
+ | * [[openssl]] | ||
* [[ssh]] | * [[ssh]] | ||
* [[sshfs]] | * [[sshfs]] | ||
Ligne 13: | Ligne 15: | ||
===== De partitions ===== | ===== De partitions ===== | ||
+ | * http://madduck.net/docs/cryptdisk/ | ||
* À la Ubuntu : https://wiki.ubuntu.com/EncryptedFilesystemHowto | * À la Ubuntu : https://wiki.ubuntu.com/EncryptedFilesystemHowto | ||
+ | * http://feeding.cloud.geek.nz/2008/05/encrypting-your-home-directory-using.html | ||
* http://feeds.feedburner.com/~r/UbuntuTutorials/~3/145370028/ | * http://feeds.feedburner.com/~r/UbuntuTutorials/~3/145370028/ | ||
* http://www.cs278.org/blog/ubuntu-configuration/feisty-debootstrap-encrypted-install/ | * http://www.cs278.org/blog/ubuntu-configuration/feisty-debootstrap-encrypted-install/ | ||
Ligne 26: | Ligne 30: | ||
* http://blog.incase.de/index.php/2007/02/20/dual-boot-and-full-encryption-part-2/ | * http://blog.incase.de/index.php/2007/02/20/dual-boot-and-full-encryption-part-2/ | ||
* http://www.student.tue.nl/Q/j.f.berndsen/debian/ | * http://www.student.tue.nl/Q/j.f.berndsen/debian/ | ||
+ | |||
+ | * Réflexions : http://feeding.cloud.geek.nz/2008/04/two-tier-encryption-strategy-archiving.html | ||
+ | * Attaques : http://www.hermann-uwe.de/blog/lest-we-remember--cold-boot-attacks-on-encryption-keys | ||
==== LUKS ==== | ==== LUKS ==== | ||
Ligne 33: | Ligne 40: | ||
* https://help.ubuntu.com/community/EncryptedFilesystem | * https://help.ubuntu.com/community/EncryptedFilesystem | ||
* http://johnleach.co.uk/words/archives/2006/12/06/245/ | * http://johnleach.co.uk/words/archives/2006/12/06/245/ | ||
+ | * retailler : http://www.enricozini.org/2008/tips/resize-luks.html | ||
+ | * Et ssh : http://ubuntuforums.org/showthread.php?t=829768 | ||
==== Comparaison ==== | ==== Comparaison ==== | ||
Ligne 38: | Ligne 47: | ||
- | ==== Démarrage (grub) ==== | + | |
+ | |||
+ | ==== Démarrage ==== | ||
+ | === grub === | ||
* http://blog.sietch-tabr.com/index.php/post/2007/09/28/reinstallation-de-GRUB-sur-le-MBR-avec-un-systeme-sur-un-LVM-chiffre | * http://blog.sietch-tabr.com/index.php/post/2007/09/28/reinstallation-de-GRUB-sur-le-MBR-avec-un-systeme-sur-un-LVM-chiffre | ||
+ | |||
+ | === clef === | ||
+ | * http://www.matthew.ath.cx/articles/cryptkey | ||
+ | * Système sur clef : http://www.debian-administration.org/articles/179 | ||
==== Liens (pour orthosie) ==== | ==== Liens (pour orthosie) ==== | ||
Ligne 49: | Ligne 65: | ||
* http://www.saout.de/tikiwiki/tiki-index.php | * http://www.saout.de/tikiwiki/tiki-index.php | ||
* http://www.saout.de/tikiwiki/tiki-index.php?page=HOWTO | * http://www.saout.de/tikiwiki/tiki-index.php?page=HOWTO | ||
+ | |||
+ | ==== Partition d'échange ===== | ||
+ | * http://feeding.cloud.geek.nz/2008/03/encrypted-swap-partition-on.html | ||
===== eCryptfs ===== | ===== eCryptfs ===== | ||
* http://lwn.net/Articles/156921/ | * http://lwn.net/Articles/156921/ | ||
+ | * Répertoires privés : http://dustinkirkland.wordpress.com/2008/10/03/whats-in-my-encrypted-private-directory/ | ||
===== Encfs ===== | ===== Encfs ===== | ||
* http://hollowtube.mine.nu/wiki/index.php/PAM/PamEncfs | * http://hollowtube.mine.nu/wiki/index.php/PAM/PamEncfs | ||
+ | * Mode graphique : http://www.aigarius.com/blog/2008/02/02/using-fuse-encfs-in-a-graphical-way/ | ||
+ | |||
+ | |||
===== Clefs sur clef ====== | ===== Clefs sur clef ====== | ||
+ | * http://www.linux.codehelp.co.uk/serendipity/index.php?/archives/131-Adapting-autofs-for-GPG-keys-to-an-SD-card.html | ||
* http://www.mattb.net.nz/blog/2006/04/13/loading-gpg-ssh-keys-from-a-usb-key-round-2/ | * http://www.mattb.net.nz/blog/2006/04/13/loading-gpg-ssh-keys-from-a-usb-key-round-2/ | ||
* http://www.mattb.net.nz/debian/misc/manage-keys | * http://www.mattb.net.nz/debian/misc/manage-keys | ||
* https://help.ubuntu.com/community/GPGKeyOnUSBDrive | * https://help.ubuntu.com/community/GPGKeyOnUSBDrive | ||
+ | * http://www.einval.com/~steve/docs/gpg-autofs.html | ||
+ | * http://artisan.karma-lab.net/node/1164 | ||
+ | * http://www.matthew.ath.cx/articles/cryptkey | ||
===== Courbes elliptiques ======= | ===== Courbes elliptiques ======= | ||
Ligne 98: | Ligne 125: | ||
===== Clefs et courriels ===== | ===== Clefs et courriels ===== | ||
* http://www.df7cb.de/blog/2007/03/01#2007-03-01-openpgp-dns | * http://www.df7cb.de/blog/2007/03/01#2007-03-01-openpgp-dns | ||
- | |||
===== Pour la monnaie ? ===== | ===== Pour la monnaie ? ===== | ||
* http://kitenet.net/~joey/blog/entry/re:_online_shopping/ | * http://kitenet.net/~joey/blog/entry/re:_online_shopping/ | ||
+ | |||
+ | ===== Sans-fil ===== | ||
+ | * http://www.schneier.com/blog/archives/2008/01/my_open_wireles.html | ||
====== Astuces ====== | ====== Astuces ====== |