Subject: Re: questions about netbsd
To: KroNiC~BSD <kronic_bsd@fastmail.fm>
From: der Mouse <mouse@Rodents.Montreal.QC.CA>
List: port-i386
Date: 02/09/2003 15:56:07
> OK, Thanks.....Now would it be possible to use another algorithm such
> as AES or Blowfish?

Sure.  It's open source; you can use any algorithm you can code.  I
have patches to add an MD5-based hash, for example.  (I did them long
before the main NetBSD sources got MD5-based hashing.)

> I am still trying to find out what's different in regards to security
> in netbsd vrs. openbsd.

I would guess that the major difference is that OpenBSD hypes it more,
but as I don't follow NetBSD very closely these days and have never
followed OpenBSD, all I have in this regard is guesses.

> Another question: Can i encrypt the swap space on netbsd?

In principle, yes: it would be relatively easy to build an encrypting
disk layer that encrypted blocks before writing them to disk,
decrypting on read, and then use that for swap.

Out of the box, probably not, though I'll let someone who knows
-current better than I answer more authoritatively.

/~\ The ASCII				der Mouse
\ / Ribbon Campaign
 X  Against HTML	       mouse@rodents.montreal.qc.ca
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B