[PYTHON-CRYPTO] AES in M2Crypto advice
Ng Pheng Siong
ngps at POST1.COM
Thu Jun 5 08:46:05 CEST 2003
On Tue, Jun 03, 2003 at 12:13:17AM +0700, Jason H. Smith wrote:
Content-Description: signed data
> The problem is, the system administrator, or an intruder, should not have
> access to, say, the CEO's laptop image; so there's the encryption
> requirement.
IMHO, it is more important that the thief who steals the CEO's laptop or
the subsequent black market buyer do not get access to the files on it.
Install a crypto filesystem type thingy on the laptop and train the CEO to
use it properly. Then just backup the disk image normally; sensitive stuff
should already be secured by the crypto filesystem. You can escrow the
passphrase with the corporate lawyers or, ahem, a trusted third party. (Not
your $25 SSL cert vendor, fer sure. ;-)
> Thanks for the implementation advice, as well. I'm relatively new to
> Python and GUI programming. So I'm still boggling over the correct
> approach.
Yes, having fun is important too. ;-)
--
Ng Pheng Siong <ngps at netmemetic.com>
http://firewall.rulemaker.net -+- Manage Your Firewall Rulebase Changes
http://www.post1.com/home/ngps -+- Open Source Python Crypto & SSL
More information about the python-crypto
mailing list