Very Secure File Storage
Jeffrey F. Bloss
jbloss at tampabay.rr.com
Thu Nov 29 10:35:00 GMT 2007
Jan Claeys wrote:
> Op woensdag 28-11-2007 om 09:19 uur [tijdzone -0500], schreef Jeffrey F.
> Bloss:
> > I store all my private keys in a Truecrypt volume about the size of a
> > 256M thumb drive. I have a copy of that encrypted volume on my laptop,
> > and one on a thumb drive. Neither can be accessed without being
> > mounted using a very strong "master" pass phrase, and I sync the
> > copies as necessary so they serve as backups for each other.
>
> There should be a strong pass phrase on your secret key anyway...?
Indeed.
I try to use passwords/phrases that are equal in strength or stronger
than the underlying encryption for "mission critical" applications,
which means I'm memorizing upwards of 60 random characters at times.
The Truecrypt thing is sort of a compromise between a perfect world
where I could remember 75 to 100 random passwords, and the practical
world where age and Jack Daniels sometimes have a say in things. ;)
A Truecrypt volume works especially well for things like GnuPG and SSH
keys in my opinion because you're effectively removing physical access
to the keys. Not quite so effective for simple account/password
combinations, but I still keep everything in a TC volume just because
it's "the way I do things" and it doesn't hurt to have them locked away
when they're not in use.
--
\|/ Talent develops in tranquillity, character
(* *) in the full current of human life.
-oOO-(_)-OOo-----------------[ Johann Wolfgang von Goethe ]---
http://wrench.homelinux.net/~jeff/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 903 bytes
Desc: not available
Url : https://lists.ubuntu.com/archives/sounder/attachments/20071129/f9c06bd3/attachment.pgp
More information about the sounder
mailing list