DOCSLIB.ORG

The Whole Disk

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
The Whole Disk COVER STORY DM-Crypt/ LUKS Workshop: Encrypting hard disks with DM-Crypt and LUKS THE WHOLE DISK Encrypting a home directory is easy. Encrypting your whole hard disk – including the root filesystem – takes a little more effort. BY MICHAEL NERB ncrypting individual filesystems means you’ll need to roll up your shirt is no big deal; in fact, some dis- sleeves for some hands-on configuration. Etributions allow you to encrypt In this workshop, we will start by in- directories as part of the installation rou- stalling a standard Linux system and tine. But encrypting the home directory then progress to encrypting the existing on your laptop is a job half done. Dis- filesystems one at a time. We will finish honest finders can still draw conclusions off by deleting the unprotected partition from log and configuration files. If you’re and using the space for other tasks, such serious about providing security through as swapping out the /home directory to encryption, you need to protect the an encrypted partition of its own. whole hard disk against spying – some- Our goal is to encrypt the entire hard thing that no distribution can do out of disk (with the exception of the partition the box. table in the Master Boot Record). Be- Things start to become more complex cause it isn’t possible to encrypt the boot if you need to protect the root filesystem. partition, we will move /boot to an exter- Neither Suse nor Debian Linux give nal medium – a USB stick, in this case. users a tool to help encrypt the root file- To boot from the stick, we will need to system during the install (or later). That modify the BIOS and GRUB bootloader settings. The USB stick then creates an additional layer of security by serving as a kind of “key” that the thief will need to possess in order to gain access to the laptop. If this approach seems impracti- cal for your purposes, you can keep the boot partition on your hard disk. How- ever, /boot must be on an unen- crypted partition of its own. In this article, we’ll use DM- Crypt [1] for our filesystem en- www.photocase.com cryption. DM-Crypt has been the tool of choice for encrypt- ing filesystems since kernel 32 ISSUE 72 NOVEMBER 2006 DM-Crypt/ LUKS COVER STORY shown in column 2 of one partition and format the partition the table.) (mkfs.ext2 /dev/sda1). Then do: Set up the size and number of partitions to mount /dev/sda1 /mnt match your laptop’s hard cp -ax /boot/* /mnt disk and intended use – dual or multiple boot This copies the /boot directory to the configurations are possi- USB stick. If it does not already exist, ble. Do not create a user give the ln -s . boot command to create a at this phase of the in- symbolic link in the /mnt directory, to stallation; you can do so avoid a hitch with grub-install later on. later on the encrypted Now modify the GRUB bootloader system. configuration on the USB stick: /mnt/ After completing the grub/device.map states how GRUB maps installation, you should BIOS and Linux device names; you need Figure 1: Booting from a USB stick – every BIOS does its own have a working Linux an entry of (hd0) /dev/sda. thing. Our sample BIOS refers to removable drives and a system on /dev/hda4. If Change the entries for the BIOS device generic storage device. you have a kernel ver- names from (hd0,3) to (hd0,0) (this cor- sion older than 2.6.11 responds to /dev/sda1) in the /mnt/ 2.6.4. It uses the device mapper infra- (with Debian Sarge, for example), you grub/menu.lst configuration file: structure [2], and it encrypts block de- will need to update the kernel now. For vices transparently, relying on the ker- the following steps, you also need the title Suse Linux 9.3 (USB-Boot) nel’s Crypto API to do so. Linux Unified cryptsetup-luks configuration tool. kernel (hd0,0)/vmlinuz root=U Key Setup (LUKS) adds some enhance- The “Updates for Debian Sarge” box /dev/hda4 ments, which were discussed in a previ- describes how to update a Sarge system; initrd (hd0,0)/initrd ous issue of Linux Magazine [3]. The for Suse Linux, you just need to add LUKS design is implemented as the cryptsetup-luks. The LUKS homepage at Finally, run grub-install --root-direc- cryptsetup-luks [4] configuration tool. [4] has a prebuilt, statically linked ver- tory=/mnt /dev/sda to install GRUB on As an alternative to a fresh installa- sion that you can copy to /sbin/crypt- the Master Boot Record of your memory tion, you can modify an existing system, setup-luks. stick. If everything works, you can boot assuming you have enough free space on the laptop from the USB stick – to do so, the disk to create a new partition for the Booting from a USB-Stick set the BIOS boot order to boot the com- data you are encrypting. Linux typically detects USB sticks as puter from external boot media first. Don’t worry! After you finish encrypt- SCSI devices and addresses them as the ing, the disk patches and kernel updates SCSI hard disk /dev/sda (unless you Encrypting Partitions should not cause any problems, and have some other SCSI devices). Use fdisk For security reasons, either change to your backup and recovery tools should to create a partition table with at least single user mode, or close any unneces- work like they always did. Secure Data Erasure Preparation Whenever files are deleted by running uses /dev/urandom instead of /dev/zero. The equipment you need for this lab is a rm against the filenames, Linux simply Depending on how paranoid you are, suitable laptop, a USB stick with a ca- removes the inodes for the files from the you can do this between three and 35 pacity of about 64 Mbytes, and your fa- directory. The data stays on the disk and times [5] to be “fairly certain” that you vorite Linux distribution (kernel 2.6.11 can be reconstructed with a little effort. have removed the data. The shred and or newer) – we tested Suse Linux 9.3 / Reformatting with mkfs will not over- wipe [7] tools will help you do so. But 10.0 and Debian Sarge. Check the laptop write the partition. you should be aware that these tools as- BIOS to see if it supports booting from To permanently remove the data, you sume a few basic conditions that may not apply to RAID systems, journaling USB (Figure 1). Use a Live CD to ensure need to actively modify the magnetiza- filesystems (such as ReiserFS or Ext3), or that Linux supports your laptop; you tion of the sectors (in an appropriate way). The simplest way of doing this is certain hard disk drivers and firmware might like to take this opportunity to with a command such as dd if=/dev/zero components that buffer data and per- erase the laptop disk (see the “Secure of=/dev/hda. But just as a regular fall of form multiple write operations at a sin- data erasure” box). snow will not cover the outlines of the gle pass. For the initial install, divide the hard landscape, some residual magnetization To be absolutely safe, you would need to disk into four partitions, as shown in will remain after overwriting a file with destroy the hard disk and dispose of it column 1 of Table 1. This configuration null bytes. An attacker with the right kind somewhere where it will never be found. puts an unencrypted version of the of equipment might be able to recon- But you can save yourself all that trouble Linux system on /dev/hda4. (If you pre- struct the original data. by implementing the mechanisms de- fer not to boot from a USB stick, use the A more time consuming approach, but scribed in this article, and then just for- getting the passwords. alternative partitioning suggestion one that is ultimately far more secure, WWW.LINUX - MAGAZINE.COM ISSUE 72 NOVEMBER 2006 33 COVER STORY DM-Crypt/ LUKS Table 1: Partitioning knows the passphrases, the data stored on swap and /tmp is irretrievably lost, Boot from USB Stick Alternative: Boot from hard disk Content but this is intended. Swap contains – /dev/hda1 Boot partition /boot memory dumps and is reinitialized – /dev/hda2 Extended partition /dev/hda1 /dev/hda5 Encrypted swap partition whenever you boot your computer. /dev/hda2 /dev/hda6 Encrypted filesystem /tmp There are no benefits from keeping swap /dev/hda3 /dev/hda7 Encrypted root filesystem readable, and there are a number of se- /dev/hda4 /dev/hda8 Unencrypted root filesystem curity risks. Every distribution has its (to be deleted later) own approach to handling temporary files. As a rule, programs should not rely sary applications, stop all unnecessary with a filesystem, and mount the filesys- on data in /tmp surviving a reboot. services, and shutdown any user ses- tem. sions. Genuinely Temporary We will be using the Linux system we Warming Up It makes sense to recreate these filesys- just installed to encrypt the partitions on The swap partition and the /tmp direc- tems every time you boot. Debian makes the laptop step by step; the partitions in tory are useful candidates for our first this simple: just set the CRYPTDISKS_ question are /dev/hda1 through /dev/ experiments with cryptsetup-luks: these ENABLE=Yes parameter in /etc/defaults/ hda3. Partition /dev/hda4, which holds filesystems contain temporary data and cryptdisks (if it is not already set), and the root filesystem right now, will not be are no big loss if something goes awry.
Load more

Recommended publications
  • Enable USB Drivers on Linux
    Enable USB drivers on Linux INTHISDOCUMENT · Enable USB driver on system with USBFS support · Enable USB driver on system without USBFS support · Additional notes for FTDI/XTAG debug adapters The XMOS tools interface to development boards using USB debug adapters. USB driver support is provided natively on Linux, but in some cases, the driver must be enabled. The method required to enable the driver depends on the Linux distribution you are using and the kernel version. Linux distributions known to provide USBFS support include: · Ubuntu 9.04 or older · Ubuntu 9.10 with kernel 2.6.31-19-server · CentOS 4.8 and 5.4 · Generally, any distribution with kernel version < 2.6.32 Linux distributions known to not provide USBFS support include: · Ubuntu 10.04 · Generally, any distribution with kernel version >= 2.6.32 1 Enable USB driver on system with USBFS support If your distribution provides USBFS support, use the following command to enable the Linux driver: · mount -t usbfs none /proc/bus/usb -o devmode=0666 To automatically enable the driver on boot, add the following line to the file /etc/fstab: none /proc/bus/usb usbfs defaults,devmode=0666 0 0 Publication Date: 2012/10/30 Document Number: X2612A XMOS © 2012, All Rights Reserved Enable USB drivers on Linux 2/3 2 Enable USB driver on system without USBFS support If you distribution does not provide USBFS support, you must configure udev to recognise the device. To configure udev, follow these steps: 1. Create a file /etc/udev/rules.d/99-xmos.rules with the following contents: SUBSYSTEM!="usb|usb_device", GOTO="xmos_rules_end" ACTION!="add", GOTO="xmos_rules_end" # 20b1:f7d1 for xmos xtag2 ATTRS{idVendor}=="20b1", ATTRS{idProduct}=="f7d1", MODE="0666", SYMLINK+="xtag2-%n" # 0403:6010 for XC-1 with FTDI dual-uart chip ATTRS{idVendor}=="0403", ATTRS{idProduct}=="6010", MODE="0666", SYMLINK+="xc1-%n" LABEL="xmos_rules_end" The ATTRS, MODE and SYMLINK stanzas must be all on one line, as each rule can only be on one line.
    [Show full text]
  • Flexible Lustre Management
    Flexible Lustre management Making less work for Admins ORNL is managed by UT-Battelle for the US Department of Energy How do we know Lustre condition today • Polling proc / sysfs files – The knocking on the door model – Parse stats, rpc info, etc for performance deviations. • Constant collection of debug logs – Heavy parsing for common problems. • The death of a node – Have to examine kdumps and /or lustre dump Origins of a new approach • Requirements for Linux kernel integration. – No more proc usage – Migration to sysfs and debugfs – Used to configure your file system. – Started in lustre 2.9 and still on going. • Two ways to configure your file system. – On MGS server run lctl conf_param … • Directly accessed proc seq_files. – On MSG server run lctl set_param –P • Originally used an upcall to lctl for configuration • Introduced in Lustre 2.4 but was broken until lustre 2.12 (LU-7004) – Configuring file system works transparently before and after sysfs migration. Changes introduced with sysfs / debugfs migration • sysfs has a one item per file rule. • Complex proc files moved to debugfs • Moving to debugfs introduced permission problems – Only debugging files should be their. – Both debugfs and procfs have scaling issues. • Moving to sysfs introduced the ability to send uevents – Item of most interest from LUG 2018 Linux Lustre client talk. – Both lctl conf_param and lctl set_param –P use this approach • lctl conf_param can set sysfs attributes without uevents. See class_modify_config() – We get life cycle events for free – udev is now involved. What do we get by using udev ? • Under the hood – uevents are collect by systemd and then processed by udev rules – /etc/udev/rules.d/99-lustre.rules – SUBSYSTEM=="lustre", ACTION=="change", ENV{PARAM}=="?*", RUN+="/usr/sbin/lctl set_param '$env{PARAM}=$env{SETTING}’” • You can create your own udev rule – http://reactivated.net/writing_udev_rules.html – /lib/udev/rules.d/* for examples – Add udev_log="debug” to /etc/udev.conf if you have problems • Using systemd for long task.
    [Show full text]
  • ANDROID PRIVACY THROUGH ENCRYPTION by DANIEL
    ANDROID PRIVACY THROUGH ENCRYPTION by DANIEL DEFREEZ A THESIS Presented to the Department of Computer Science in partial fullfillment of the requirements for the degree of Master of Science in Mathematics and Computer Science Ashland, Oregon May 2012 ii APPROVAL PAGE “Android Privacy Through Encryption,” a thesis prepared by Daniel DeFreez in partial fulfillment of the requirements for the Master of Science in Mathematics and Computer Science. This project has been approved and accepted by: Dr. Lynn Ackler, Chair of the Examining Committee Date Pete Nordquist, Committee Member Date Hart Wilson, Committee Member Date Daniel DeFreez c 2012 iii ABSTRACT OF THESIS ANDROID PRIVACY THROUGH ENCRYPTION By Daniel DeFreez This thesis explores the field of Android forensics in relation to a person’s right to privacy. As the field of mobile forensics becomes increasingly sophisticated, it is clear that bypassing common privacy measures, such as disk encryption, will become routine. A new keying method for eCryptfs is proposed that could significantly mitigate memory attacks against encrypted file systems. It is shown how eCryptfs could be modified to implement this keying method on an Android device. iv ACKNOWLEDGMENTS I would like to thank Dr. Lynn Ackler for introducing me to the vast world of computer security and forensics, cultivating a healthy paranoia, and for being a truly excellent teacher. Dr. Dan Harvey, Pete Nordquist, and Hart Wilson provided helpful feedback during the preparation of this thesis, for which I thank them. I am deeply indebted to my friends and colleagues Brandon Kester, Andrew Krug, Adam Mashinchi, Jeff McJunkin, and Stephen Perkins, for their enthusiastic interest in the forensics and security fields, insightful comments, love of free software, and encouraging words.
    [Show full text]
  • Installing a Real-Time Linux Kernel for Dummies
    Real-Time Linux for Dummies Jeroen de Best, Roel Merry DCT 2008.103 Eindhoven University of Technology Department of Mechanical Engineering Control Systems Technology group P.O. Box 513, WH -1.126 5600 MB Eindhoven, the Netherlands Phone: +31 40 247 42 27 Fax: +31 40 246 14 18 Email: [email protected], [email protected] Website: http://www.dct.tue.nl Eindhoven, January 5, 2009 Contents 1 Introduction 1 2 Installing a Linux distribution 3 2.1 Ubuntu 7.10 . .3 2.2 Mandriva 2008 ONE . .6 2.3 Knoppix 3.9 . 10 3 Installing a real-time kernel 17 3.1 Automatic (Ubuntu only) . 17 3.1.1 CPU Scaling Settings . 17 3.2 Manually . 18 3.2.1 Startup/shutdown problems . 25 4 EtherCAT for Unix 31 4.1 Build Sources . 38 4.1.1 Alternative timer in the EtherCAT Target . 40 5 TUeDACs 43 5.1 Download software . 43 5.2 Configure and build software . 44 5.3 Test program . 45 6 Miscellaneous 47 6.1 Installing ps2 and ps4 printers . 47 6.1.1 In Ubuntu 7.10 . 47 6.1.2 In Mandriva 2008 ONE . 47 6.2 Configure the internet connection . 48 6.3 Installing Matlab2007b for Unix . 49 6.4 Installing JAVA . 50 6.5 Installing SmartSVN . 50 6.6 Ubuntu 7.10, Gutsy Gibbon freezes every 10 minutes for approximately 10 sec 51 6.7 Installing Syntek Semicon DC1125 Driver . 52 Bibliography 55 A Menu.lst HP desktop computer DCT lab WH -1.13 57 i ii CONTENTS Chapter 1 Introduction This document describes the steps needed in order to obtain a real-time operating system based on a Linux distribution.
    [Show full text]
  • Linux Enumeration of Nics Version 4.1
    Linux Enumeration of NICs Version 4.1 By Robert Hentosh <[email protected]>, Matt Domsch <[email protected]> and Narendra K <[email protected]> . September 2009 Abstract Linux naming of the hardware network interfaces may not align with BIOS and chassis labeling of the Ethernet ports. This is seen on Dell PowerEdge 1950, 1955, 2900, 2950 and newer servers when using a Linux 2.6 kernel-based product such as Red Hat Enterprise Linux 4, 5 and Novell/SuSE Linux Enterprise Server 9, 10 and 11. Solutions to align the Linux name with the expected name are presented. Introduction System administrators may expect the onboard network ports labeled Gb1, Gb2, etc... on a system to be assigned interface names eth0, eth1, etc... respectively. This would be one possible naming convention for network interfaces; however no industry standards currently exist to ensure such a convention. The method used in Linux to determine the number associated with a network port (i.e. eth0, eth1, eth2…) is complex and changed with the 2.6 and newer kernels. The naming disconnect can be observed at two different times: 1. Install Time - OS Installation when network booting (e.g. using a PXE installation procedure); 2. System Runtime – Following OS installation Dell engineers have developed workarounds for Red Hat Enterprise Linux 4 (RHEL4), 5 (RHEL5), and Novell/SuSE Linux Enterprise Server (SLES) 9, 10 and 11 for each of the above scenarios. While the naming disconnect directly affects Dell PowerEdge 1950, 1955, 2900, 2950 and newer servers running Linux 2.6 kernels (eg. RHEL4, RHEL5 , SLES9, SLES10 and SLES 11), this behavior is not unique to Dell systems.
    [Show full text]
  • Zynq Ultrascale+ Mpsoc TRD User Guide (UG1221)
    Zynq UltraScale+ MPSoC Base Targeted Reference Design User Guide UG1221 (v2016.4) March 22, 2017 Revision History The following table shows the revision history for this document. Date Version Revision 03/22/2017 2016.4 Released with Vivado Design Suite 2016.4 with no changes from previous version. 12/15/2016 2016.3 Updated for Vivado Design Suite 2016.3: Updated Reference Design Overview. Replaced Chapter 2, Reference Design. Updated Figure 3-1 and the following paragraph. Updated Figure 4-1 and perfapm library descriptions in Chapter 4, RPU-1 Software Stack (Bare-metal). Updated Figure 6-1, Figure 6-2, and DDR region descriptions under Memories in Chapter 6. Updated Figure 7-1, Figure 7-4, and Figure 7-5. Added X11 section, deleted first paragraph under EGLFS QPA, and modified “Evdev” section to “Libinput” in Chapter 7, APU Software Platform. Updated Table 8-2 and clock descriptions under Clocks, Resets and Interrupts in Chapter 8. 07/22/2016 2016.2 Updated for Vivado Design Suite 2016.2: Added “GPU” to hardware interfaces and IP under Key Features. Changed link under Design Modules from the wiki site to the HeadStart Lounge and updated link under Tutorials to the Base TRD wiki site. Deleted steps 2 and 4 under Tutorials and added reference tutorial (last bullet). Added second to last sentence to second paragraph under Boot Process. Added “Load PMU FW” component to Figure 6-1. Clarified Message Passing section (text only). Changed “PCA9546” to PCA9548” in Figure 8-7. 06/29/2016 2016.1 Initial Xilinx release. Zynq UltraScale+ MPSoC Base TRD www.xilinx.com Send Feedback 2 UG1221 (v2016.4) March 22, 2017 Table of Contents Revision History .
    [Show full text]
  • Using Udev LINUXUSER Deviceusing Udev JUNGLE
    Command Line: Using udev LINUXUSER DEVICEUsing udev JUNGLE Learn how to create your own udev rules and deploy command-line tools to monitor and control udev events to clear your way through www.sxc.hu the Linux device jungle. BY HEIKE JURZIK n the past few years, Linux has pro- To keep everything running smoothly, udev on /dev type tmpfs (rw,mode gressed in the field of hardware de- udev needs rules that it references to dis- =0755) Itection and management. The days cover a device’s name and how to han- ... of static device files huddled below the dle the device. /dev directory are long gone, and Devfs Listing 1: Rules is also obsolete. Since kernel 2.6, udev Device Garage 01 $ ls -la /etc/udev/rules.d/ [1] has been responsible for handling The udev “repository” is the /dev direc- 02 ... both the device filesystem and Hotplug, tory, which is where the device files that which includes setting up the required allow applications to access hardware 03 lrwxrwxrwx 1 root root 20 device files, setting permissions, and reside. If you look inside the folder, you 2007-05-09 23:40 020_ optionally launching certain programs. will see not only the file names for your permissions.rules -> ../ hard disks and partitions (for example, permissions.rules User Space sda, as in sda1, sda2), but also files for 04 lrwxrwxrwx 1 root root 19 In contrast to its predecessors, udev runs CD/ DVD drives (a symlink to cdrom typ- 2007-05-10 00:39 025_ in user space – that is, as a “normal” ically points to the “genuine” device, libgphoto2.rules -> ../ program.
    [Show full text]
  • Tuning Systemd for Embedded
    Tuning systemd for Embedded Alison Chaiken [email protected] Mar. 23, 2015 Latest version: http://she-devel.com/ELC_systemd.pdf Auxiliary files: http://she-devel.com/ELC_auxiliary.tar.bz2 Text in blue is hyperlinked. ? ? ? ? Quiz: what is the most widely used Linux init system? ? ? ? ? phenomenom.” -- Gary Hamel “ Show Action Linux itself.” -- is Linux GKH, Linux “ Valley Silicon Gates,-- Bill industry.” the technology in position “ Success self-correcting Success is a hurt Thethatever thing can only has a guaranteed No one Linux needs to keepinnovating Pirates Pirates of Licensed under CC BY-SA 3.0 http://commons.wikimedia.org/wiki/File:Fire-lite-bg- 10.jpg#mediaviewer/File:Fire-lite-bg-10.jpg Philosophy of systemd Extract duplicate functionality from daemons and move it to systemd core or kernel. Replace /etc scripts with declarative config files. Expose newer kernel APIs to userspace via a simple interface. systemd is: ● modular; ● asynchronous and concurrent; ● described by declarative sets of properties; ● bundled with analysis tools and tests; ● features a fully language-agnostic API. One daemon to rule them all xinetd: a daemon to lazily launch internet services when activity is detected on an AF_INET socket systemd: a daemon to lazily launch any system service when activity is detected on an AF_UNIX socket (oversimplification) Complexity arising from many similar small units init.d scripts systemd units ● Unit's action and parameters: ExecStart= ● Dependencies: Before=, After=, Requires=, Conflicts= and Wants=. ● Default dependencies: – Requires= and After= on basic.target; – Conflicts= and Before= on shutdown.target. ● Types of unit files: service, socket, device, mount, scope, slice, automount, swap, target, path, timer, snapshot sysVinit runlevels ≈ systemd targets ● Targets are synchronization points.
    [Show full text]
  • Oracle® Linux 7 Administrator's Guide
    Oracle® Linux 7 Administrator's Guide E54669-78 October 2020 Oracle Legal Notices Copyright © 2014, 2020, Oracle and/or its affiliates. This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited. The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing. If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, then the following notice is applicable: U.S. GOVERNMENT END USERS: Oracle programs (including any operating system, integrated software, any programs embedded, installed or activated on delivered hardware, and modifications of such programs) and Oracle computer documentation or other Oracle data delivered to or accessed by U.S. Government end users are "commercial computer software" or "commercial computer software documentation" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, the use, reproduction, duplication, release, display, disclosure, modification, preparation of derivative works, and/or adaptation of i) Oracle programs (including any operating system, integrated software, any programs embedded, installed or activated on delivered hardware, and modifications of such programs), ii) Oracle computer documentation and/or iii) other Oracle data, is subject to the rights and limitations specified in the license contained in the applicable contract.
    [Show full text]
  • Database-Installation-Guide-Linux.Pdf
    Oracle® Database Database Installation Guide 19c for Linux E96432-19 July 2021 Oracle Database Database Installation Guide, 19c for Linux E96432-19 Copyright © 2015, 2021, Oracle and/or its affiliates. Primary Authors: Prakash Jashnani, Subhash Chandra Contributing Authors: Douglas Williams Contributors: Jean-Francois Verrier, Richard Roddy, Neha Avasthy, Sampath Ravindhran, Prasad Bagal, Subhranshu Banerjee, Gerald Venzl, Tammy Bednar, Avi Miller, Gavin Bowe, Gia-Khanh Nguyen, Darcy Christensen, Kiran Chamala, Jonathan Creighton, Benoit Dageville, Logeshwaran Rajan, Rajesh Dasari, Angad Gokakkar , Anu Natarajan, Girdhari Ghantiyala, Bernard Clouse, Chandrasekharan Iyer, Anil Nair, Sivaram Soma, Lisa Vaz, Ranjit Noronha, Vasu Venkatasubramanian, Sumanta Chatterjee, Margaret Susairaj, Malai Stalin, Markus Michalewicz, Subrahmanyam Kodavaluru, Sudip Datta, Madhu Hunasigi, Jim Erickson, Marcus Fallen, Joseph Francis, Allan Graves, Barbara Glover, Asad Hasan, Thirumaleshwara Hasandka, Putta Ramesh, Sergio Leunissen, Aneesh Khandelwal, Joel Kallman, Eugene Karichkin, Jai Krishnani, Prasad K Kulkarni, Ranjith Kundapur, Balaji Pagadala, Christopher Jones, Tak Wang, Bryn Llewellyn, Saar Maoz, Chao Liang, Gopal Mulagund, Pushkar Punit, Sivaselvam Narayanasamy, Ankur Kemkar, Sue Lee, Rich Long, Ricardo Alonso Gonzalez Acuna, Barb Lundhild, Sangeeth Jose, Rudregowda Mallegowda, Prasad Kuruvadi Nagaraj, Mughees Minhas, Krishna Mohan, Matthew McKerley, John McHugh, Gurudas Pai, Satish Panchumarthy , Rajesh Prasad, Rajendra Pingte, Ramesh Chakravarthula,
    [Show full text]
  • Hotplugging with Udev, HAL, and D-Bus HOTHOT WIREDWIRED
    LINUXKNOW-HOW USER SchlagwortHotplugging sollte hier stehen Hotplugging with Udev, HAL, and D-Bus HOTHOT WIREDWIRED Hardware which just works is what every user wants. Current Linux distributions go a long way to fulfilling that dream. In this article, we will be investigating how the hotplug system works. BY OLIVER FROMMEL, MARCEL HILZINGER AND RENÉ REBE s it really that difficult? You only wanted Linux to launch the right manages the actions associated with a Iprogram when you attached your hotplug event. In this case, the agent new digital camera, but the operating manages the task of adding and register- which in turn start other agents. It is system has decided to sit this one out. ing the new device. common for multiple hotplug agents to This scenario is all too common, The steps the agent performs may work together. For example, when you although the situation has started to vary depending on your distribution and connect an external hard disk, first the improve. Linux should handle any kind the type of hardware you are installing. USB agent loads, then the SCSI agent of hardware correctly, but the ability to Since most hotplug-capable hardware loads to mount the individual partitions manage USB and Firewire devices attaches to a USB port, the USB agent is as SCSI devices with the help of the usb- plugged in or unplugged while the com- perhaps a good example. The USB agent storage module. If you attach a Bluetooth puter is running (known as hotplugging first checks if a driver is available for the dongle, the USB agent runs first, fol- [1]) has become increasingly important.
    [Show full text]
  • Intel® Cache Acceleration Software V3.8 for Linux* Administrator Guide December 2018
    Intel® Cache Acceleration Software v3.8 for Linux* Administrator Guide December 2018 Document Number: 328496-029US Intel® Cache Acceleration Software for Linux* v3.8 Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined". Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The information here is subject to change without notice. Do not finalize a design with this information. No computer system can provide absolute security. Requires an enabled Intel® processor, enabled chipset, firmware and/or software optimized to use the technologies. Consult your system manufacturer and/or software vendor for more information. Intel technologies’ features and benefits depend on system configuration and may require enabled hardware, software or service activation. Performance varies depending on system configuration. Check with your system manufacturer or retailer or learn more at intel.com. The products described in this document may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request. Contact your local Intel sales office or your distributor to obtain the latest specifications and before placing your product order. All products, computer systems, dates, and figures specified are preliminary based on current expectations, and are subject to change without notice. Intel and the Intel logo are trademarks of Intel Corporation in the U.S. and/or other countries. *Other names and brands may be claimed as the property of others.
    [Show full text]