CentOS 6.4 Encyrption

Support for security such as Firewalls and securing linux
Post Reply
dadart
Posts: 3
Joined: 2013/11/15 15:25:34

CentOS 6.4 Encyrption

Post by dadart » 2013/11/15 15:47:36

Hi All,

I have a new CentOS enviroment that needs to be encrypted which is easy and I have taken care of already. My security team is asking me if encryption is a service or an application. I also need to know if I can set the password to expire on a schedule or not.

Thanks in advance

gerald_clark
Posts: 10642
Joined: 2005/08/05 15:19:54
Location: Northern Illinois, USA

Re: CentOS 6.4 Encyrption

Post by gerald_clark » 2013/11/15 16:15:59

What would you propose to do if it expired?

dadart
Posts: 3
Joined: 2013/11/15 15:25:34

Re: CentOS 6.4 Encyrption

Post by dadart » 2013/11/15 16:20:11

As part of our data security we will need to be able to set the password to expire every X number of days; at which time we will change it to a different password; we will also need to be able to change the password should it become compermised etc.

Thanks Again

User avatar
TrevorH
Forum Moderator
Posts: 29159
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: CentOS 6.4 Encyrption

Post by TrevorH » 2013/11/15 16:25:26

But if the key was expired you wouldn't be able to boot up. Yes, you can change the key by adding a new one and deleting the old one once you've checked that it works! Not entirely sure what you'd do if the only key was expired though... reinstall I suspect.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

dadart
Posts: 3
Joined: 2013/11/15 15:25:34

Re: CentOS 6.4 Encyrption

Post by dadart » 2013/11/15 16:36:06

Thanks for the reply I guess we are sort of looking to see if the application and or process would prompt us to change the password after it expired. So basically the same way a windows machine would inform you that your password expired and needs to be changed; it would challenge you for your "old" password then request that a new password be entered. We have another preboot encryption solution that we use on our laptops that does just this.

moonpup
Posts: 118
Joined: 2008/11/20 20:38:18

Re: CentOS 6.4 Encyrption

Post by moonpup » 2013/11/15 18:31:13

You could setup a cron job to remind you to do it every 90 days for example. Also, the link below shows how to add and remove passwords assigned to an encrypted partition.

http://unixfuntime.wordpress.com/2012/0 ... -removing/

Post Reply

Return to “CentOS 6 - Security Support”