Commit b0ee5820 authored by Arie Peterson's avatar Arie Peterson 🐚
Browse files

Improvements suggested by Mart

parent 2cc4d532
Cryptops implements full-disk encryption for virtual private servers.
CryptOps implements full-disk encryption for virtual private servers.
All documentation can be found on
[the website](https://cryptops.com).
......
Considerations
==============
Possible reasons to use Cryptops
CryptOps is a tool that can be used to raise the level of security in some
particular aspects. It does not provide all-round security of your VPS.
CryptOps can be used as a part of an overall security strategy and should never
be used as definitive security solution.
Possible reasons to use CryptOps
--------------------------------
* You want to make it harder for the hoster's employees to casually view your
data.
data on disk.
* You trust your hoster now, but you want to have an easy way to cut off their
access to your data – maybe when they change owners, or when you anticipate
that they are forced by some authority to grant access to your data.
* You want your data to be safe in case the hosters disks get stolen, or
discarded without shredding.
* You want your data to be safe in case the hosters disks get confiscated,
stolen, or discarded without shredding.
* You want your data to be encrypted at rest.
Invalid reasons to use Cryptops
Invalid reasons to use CryptOps
-------------------------------
* You don't trust your hoster, or you fear that they may be forced to grant
access to your data without a timely warning. If your hoster or a powerful
third party really wants to view your data, they could
* install a modified version of Cryptops that doesn't really encrypt;
* install a modified version of CryptOps that doesn't really encrypt;
* man-in-the-middle your first ssh connection to the server running in the
initrd, capturing your encryption password when you first enter it;
* access your decrypted data in memory while your vps is active; etc.
* access your decrypted data in memory while your vps is active;
* various other methods.
It is very hard to prevent someone who has physical access to your (running)
vps from reading your data, and Cryptops does not pretend to do so.
It is very hard to prevent someone who has access (physical or via network) to
the host running your vps from reading your data, and CryptOps does not pretend
to do so.
Possible reasons to not use Cryptops
Possible reasons to not use CryptOps
------------------------------------
* It increases the chance of data loss: if you forget or lose your encryption
......
.. Cryptops documentation master file, created by
.. CryptOps documentation master file, created by
sphinx-quickstart on Tue Oct 17 10:00:20 2017.
You can adapt this file completely to your liking, but it should at least
contain the root `toctree` directive.
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment