Assistance Needed: Crypto Guide

Fri Mar 28 00:52:13 UTC 2008

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yeah, this is kind of where I see this guide going but I think that is
very future looking right now.  Thanks for the resource, though.  I've
been looking for that link for a while but I thought it was a NIST
document vice a NSA document.

Right now we need to get, at least, the information that is specific to
Fedora 9 into the document.  I think most of it is there but I want to
clean it up a bit before letting the editors at it.

I'm currently doing updates on my Rawhide box and then I'm going to play
to see if I can break a few things.

Eric

Gayathri Swaminathan wrote:
| Hey Eric:
|
| Not long ago Murray had forwarded this to the list:
| http://www.nsa.gov/snac/downloads_redhat.cfm?MenuID=scg10.3.1.1
|
| While there are lots of reference materials like these as security best
| practices sources, there is a lack of less daunting simple starters!
|
| Instead of by "type of crypt" perhaps a cook book style of:
|
| - <Security/privacy guideline> for <title> - example, "Securing
filesystem"
|    - Scenarios - why it is needed? when it is needed?
|    - Standards - mention best practice here
|    - How to do it
|
| Count me in for assistance.
|
| On Thu, Mar 20, 2008 at 7:45 AM, Eric H Christensen
| <eric at christensenplace.us <mailto:eric at christensenplace.us>> wrote:
|
| I've been working on updating the Crypto Guide (or Encryption and
| Privacy Guide) [1] but I've run into a few snags.  Karsten "Quaid"
| and I have been talking about the different information that should
| be included but we've come to a point where we need input from the
| group.
|
| Originally the Crypto Guide was written to show how to implement
| LUKS disk encryption within Fedora.  This has been done and tested.
|  Being that this is the "Encryption and Privacy Guide" proposed
| topics to include in the guide are:
|
| - LUKS Disk Encryption Solution
| - eCryptfs Disk Encryption Solution
| - GnuPG (GPG) File Encryption Solution
| - GnuPG (GPG) Email Encryption Solution
| - SSH
| - VPNs
| - Other related references.
|
| I guess the biggest problem is where do you draw the line between
| Fedora-specific implementations and good security practices that
| have information available somewhere else?
|
| So I'm asking you what should be included in the Guide and what
| shouldn't.  I'm going to try to go put as much information into the
| topics that are listed above but this has to be out the door for F9
| so I don't want to put too much information into it.  If anyone
| would like to assist writing on any of the above topics please let
| me know.
|
| Eric
|
|
| [1] http://fedoraproject.org/wiki/Docs/Drafts/CryptoGuide

- --
fedora-docs-list mailing list
fedora-docs-list at redhat.com <mailto:fedora-docs-list at redhat.com>
To unsubscribe:
https://www.redhat.com/mailman/listinfo/fedora-docs-list

| --
| Gayathri Swaminathan
| gpgkey: 3EFB3D39
| Volunteer, FDP

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFH7EE7L5V8yddJCO0RAqtuAJ4wr1d6HmOPZCVTakp5MCmeoKRK6gCfc03V
pRz+zTpQhFqySVk4z/sGIt4=
=W9OS
-----END PGP SIGNATURE-----