alt Hacker NewsYou can reboot your full-disk-encryption server while you sleep. Obligatory plug: <https://www.recompile.se/mandos>
Disclosure: I am a co-author of Mandos.
Replies
gerdesj • 01/17/2025
Thank you for this. I will almost certainly be deploying that.
You can reboot your full-disk-encryption server while you sleep. Obligatory plug: <https://www.recompile.se/mandos>
Disclosure: I am a co-author of Mandos.
Thank you for this. I will almost certainly be deploying that.
Has this solution been audited? In particular, is it safe to replay attacks by actors listening in to the network traffic?
Also from the diagram it looks like the secret key is stored unencrypted on the server, or do I read it wrong?