Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [encryption]

Encryption is transforming information through a cipher to protect it from unauthorized access.

Encryption is the process of taking some information (the plain text), and transforming it (usually with a cypher and a key) so that it is secure. Assuming a sufficiently strong cypher and key have been chosen, this cyphertext can be shared widely, without the information being compromised.

The reverse of Encryption is Decryption, where the process is reversed (normally by someone holding the key and cypher details) to return the information.

See the Wikipedia Page for more details.

775 questions
1
vote
1 answer

how do I plan partitions for LUKS encryption of a CentOS 7 server?

A CentOS 7 web server needs encryption at rest. I would like to use LUKS encryption for this, but I need direction to plan how. Can I use LUKS encryption to encrypt the entire drive as one unit on a live web server? IMy ISP told me that I need to…
CodeMed
  • 315
  • 1
  • 8
  • 21
1
vote
2 answers

openssl smime message signing: why do I need a -certfile key?

Here is how one should sign a message with openssl smime? according to the docs openssl smime -sign -in in.txt -text -out mail.msg -signer mycert.pem \ -inkey mykey.pem -certfile mycerts.pem But why is there a -signer key with a certificate --…
Vadim Samokhin
  • 121
  • 6
1
vote
1 answer

Batch sending s/mime encrypted email - How?

I need to send some sensitive data periodically to a set of recipients via email. Due to the nature of the data, we need to send it encrypted. Some of our clients use PGP/GPG, so it's not an issue, but we have a few cases where the client is not…
JJarava
  • 167
  • 2
  • 9
1
vote
1 answer

Root cannot access a directory - access denied

Under Linux (Ubuntu 14LTS), I'm trying to access an encrypted local directory created by a regular user (encfs) as root, but I get access denied: root@toad:/home/robert# cd inbox bash: cd: inbox: Permission denied How is it possible? How to allow…
Konrad Gajewski
  • 1,518
  • 3
  • 15
  • 29
1
vote
1 answer

Does my SSL cert have anything to do with or say about the symmetric session key?

The answer found on this server fault thread is my jumping off point for this general topic: https://serverfault.com/a/313558 ... and this question can be thought of as a follow-up to that answer. Does my SSL cert have anything to do with or say…
87535
  • 11
  • 1
1
vote
1 answer

Password mismatch in dovecot with postafixadmin

After many hours trying to set up a new mail server, I just can't figure out why the passwords which postfixadmin store are a mismatch with what dovecot passes for authentication. In postfixadmin, password encryption setting is: $CONF['encrypt'] =…
cortopy
  • 363
  • 5
  • 10
1
vote
1 answer

Ubuntu Encryption - Protect data in the case of Physical Server Access

Looking to Encrypt a system, such that if someone has physical access to the server they can not clone the hard drive or copy data off of it. I require the services to be running such that the system can do its job, but i want to protect the…
Digitalx86
  • 11
  • 1
1
vote
1 answer

ZFS, mdconfig, GELI and getting my head around

I want to create an encrypted virtual disk but I am struggling with understanding some basic concepts. Please correct me if any of these statements are wrong: I need a block device that geli can encrypt and mount in the system Once the device is…
Greg
  • 198
  • 10
1
vote
0 answers

Remmina TLS, NLA works, but high encryption fails

Remmina works fine with TLS and NLA. But if encryption is set to high instead of client compatible, then it stops working. Questions: 1. Why setting high encryption prevents connectivity? 2. What's the meaning of encryption setting anyway, when…
Sami Lehtinen
  • 111
  • 4
1
vote
1 answer

After resizing an encrypted LVM device, the machine takes 4 hours to boot

I have a host, under Debian Wheezy. The virtualisation software is qemu/KVM, and uses LVM Volumes as disks for the guests. The guests all have been installed using debian wheezy, full-disk encryption, LVM (/boot is out of the luks device, LVM is…
gagz
  • 29
  • 1
1
vote
0 answers

Debian KVM Host, Debian guests : where full-disk encryption should be done?

I have a host under Debian Wheezy, running qemu/KVM. I want to have all my guests fully-encrypted. I can see to possibilities : - Either I encrypt the LVM Volume using dm-crypt (cryptsetup) and use the mapped device as the disk for the VM - Or I…
gagz
  • 29
  • 1
1
vote
1 answer

Possible to decrypt FDE/SED Samsung 840 upon boot without native BIOS/UEFI support for ATA password?

It's possible to encrypt and decrypt a drive with hdparm coupled with Full Disk Encryption like some Samsung and Intel SSDs. What I'm curious about is if it's possible to use with a Desktop motherboard. Seeing as there is very little support for…
Maletor
  • 131
  • 4
1
vote
1 answer

encrypted (luks) partition had some damage - any chance?

I was trying to run Debian installer on top of an already luks-encrypted partition (I tried to do use cryptsetup in the console). I don't remember ever saying "yes, destroy" data, but what I see now, is that encrypted turned into a PV (LVM). Do I…
inger
  • 111
  • 2
1
vote
3 answers

Encrypt communications on local network

I'm developing a web application that runs on a server local to the same network as the client- basically, instead of a central web server, each customer site will have its own server hosted on the network. The server is CentOS and the clients will…
jssblck
  • 167
  • 1
  • 5
1
vote
0 answers

Most secure way to encrypt critical data to be shared, edited and seen (must ALWAYS be secure)

This question does not rely on time... so it's not about keeping data on tape or anything similar. I have 3 distinct PCs with critical information. PCs are running Windows OS. They all hold critical data that needs to be secure at all time…
Jeff Noel
  • 111
  • 4
1 2 3
51 52