Loopback Encrypted Filesystem HOWTO <author>Copyright by Ryan T. Rhea, <tt/rhear@cs.winthrop.edu/ <date>v1.1, 29 November 1999 <trans>Linux JF Project <tt/JF@linux.or.jp/ <tdate>v1.1, 30 November 1999 <abstract>  ¤³¤ÎÊ¸½ñ¤Ï¡¤¥æ¡¼¥¶¤¬¥Þ¥¦¥ó¥È¤·¤¿¤È¤¤Ë¡¤¤½¤ÎÆâÍÆ¤òÆ°Åª¤«¤ÄÆ©²áÅª¤Ë °Å¹æ²½¤¹¤ë¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ÎÀßÄêÊýË¡¤È»ÈÍÑÊýË¡¤òÀâÌÀ¤·¤Þ¤¹¡¥ ¤³¤Î¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ÏÄÌ¾ï¥Õ¥¡¥¤¥ë¤ÎÃæ¤ËÃÖ¤«¤ì¤ë¤Î¤Ç¡¤±£¤·¥Õ¥¡¥¤¥ë¤Ë¤· ¤¿¤êÌÜÎ©¤¿¤Ê¤¤Ì¾Á°¤òÉÕ¤±¤¿¤ê¤·¤Æ¡¤¤Û¤È¤ó¤É¸«¤Ä¤«¤é¤Ê¤¤¤è¤¦¤Ë¤¹¤ë¤³¤È¤¬ ¤Ç¤¤Þ¤¹¡¥ ¤³¤ÎÊýË¡¤Ë¤è¤ê¡¤¥Ç¡¼¥¿¤òÈó¾ï¤Ë°ÂÁ´¤ËÊÝ»ý¤¹¤ë¤³¤È¤¬²ÄÇ½¤Ç¤¹¡¥ </abstract>  <toc>   <sect>»Ï¤á¤ëÁ°¤Ë  ¤³¤Î½èÍý¤ò¹Ô¤¦¤Ë¤Ï¥«¡¼¥Í¥ë¤Î¥½¡¼¥¹¥³¡¼¥É¡¤¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤Ë´Ø¤¹¤ë ÃÎ¼±¡¤¤½¤ì¤«¤é¤«¤Ê¤ê¤Îº¬µ¤¤¬É¬Í×¤Ç¤¹¡¥µ¯Æ°¥Ç¥£¥¹¥¯¤òÍÑ°Õ¤·¤Æ¤ª¤¯¤³ ¤È¤òÉ®¼Ô¤Ï¤ª´«¤á¤·¤Þ¤¹¡¥¤Þ¤¿¡¤½ÅÍ×¤Ê¥Ç¡¼¥¿¤ò°Å¹æ²½¤·¤¿¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à ¤Ë°Ü¤¹Á°¤Ë¤Ï¡¤É¬¤º¥Ð¥Ã¥¯¥¢¥Ã¥×¤ò¼è¤Ã¤Æ¤ª¤¤Þ¤·¤ç¤¦¡¥ Â¾¤Î¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ÈÆ±ÍÍ¤Ë²õ¤ì¤ë¤«¤â¤·¤ì¤Ê¤¤¤«¤é¤Ç¤¹¡¥  ¤Þ¤ººÇ½é¤Ë¡¤Linux ¥«¡¼¥Í¥ë¤Ë¥Ñ¥Ã¥Á¤òÅö¤Æ¤Æ¥Ð¡¼¥¸¥ç¥ó¤ò¾¯¤Ê¤¯¤È¤â 2.2.9 °Ê¾å¤Ë¤·¤Æ¤ª¤«¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡¥¥Ñ¥Ã¥Á¤òÅö¤Æ¤ë¾Ü¤·¤¤¼ê½ç¤Ï¡¤ ¤³¤ÎÊ¸½ñ¤Î<ref id="Details" name="¾ÜºÙ¤Ê¼ê½ç">¤ÎÀá¤Ç¸å½Ò¤·¤Þ¤¹¡¥  ¥«¡¼¥Í¥ë¤Î¥½¡¼¥¹¥³¡¼¥É¤Ï°Ê²¼¤Î¾ì½ê¤Ë¤¢¤ê¤Þ¤¹: <tscreen> <url url="ftp://ftp.kerneli.org/"> </tscreen>  ¥«¡¼¥Í¥ë¤ÎºÆ¥³¥ó¥Ñ¥¤¥ë¼ê½ç¤Ë´Ø¤¹¤ë HOWTO Ê¸½ñ¤Ï°Ê²¼¤Î¾ì½ê¤«¤éÆþ¼ê¤Ç¤¤Þ¤¹: <tscreen> <url url="http://metalab.unc.edu/LDP/HOWTO/"> </tscreen>  ËÜÊ¸½ñ¤ÎÁ´ÂÎ¤Þ¤¿¤Ï°ìÉô¤Ï¡¤°Ê²¼¤Î¾ò·ï¤Î²¼¤Ë¤ª¤¤¤Æ¡¤ÌµÎÁ¤ÇÊ£À½¡¦ÇÛÉÛ¤·¤Æ ¤â¤«¤Þ¤¤¤Þ¤»¤ó¡¥ <itemize>  <item>ËÜÊ¸½ñ¤ÎÁ´ÂÎ¤¢¤ë¤¤¤Ï°ìÉô¤ò¥³¥Ô¡¼¤·¤¿¾ì¹ç¤Ï¡¤Ãøºî¸¢É½¼¨¤È¤³¤ÎµöÂú É½¼¨¤ò»Ä¤µ¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡¥  <item>ËÝÌõ¤Þ¤¿¤ÏÇÉÀ¸Êª¤Ë¤Ä¤¤¤Æ¤Ï¡¤ÇÛÉÛ¤ò¹Ô¤¦Á°¤ËÃø¼Ô¤Î¾µÇ§¤¬É¬Í×¤Ç¤¹¡¥  <item>ËÜÊ¸½ñ¤Î°ìÉôÊ¬¤òÇÛÉÛ¤¹¤ë¾ì¹ç¤Ë¤Ï¡¤ËÜÊ¸½ñ¤Î´°Á´¤ÊÈÇ¤òÆþ¼ê¤¹¤ë¼ê½ç ¤ò´Þ¤á¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡¥¤Þ¤¿¡¤´°Á´¤ÊÈÇ¤òÆÀ¤ë¼êÃÊ¤òÄó¶¡¤·¤Ê¤±¤ì¤Ð¤Ê¤ê ¤Þ¤»¤ó¡¥  <item>ËÜÊ¸½ñ¤Ë½ñ¤«¤ì¤¿Á´¤Æ¤Î¥½¡¼¥¹¥³¡¼¥É¤Ï GNU General Public License ¤Ë½¾¤¤¤Þ¤¹¡¥¤³¤Î¥é¥¤¥»¥ó¥¹¤Ï°Ê²¼¤Î¾ì½ê¤«¤é anonymous FTP ¤ò»È¤Ã¤ÆÆþ¼ê ¤Ç¤¤Þ¤¹: </itemize> <tscreen> <url url="ftp://prep.ai.mit.edu/pub/gnu/COPYING/"> </tscreen>  <sect>¤Ï¤¸¤á¤Ë  º£²ó¤Îºî¶È¤Ç¤Ï¡¤`/dev/loop*' ¥Ç¥Ð¥¤¥¹(ÉáÄÌ¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¤¤ì¤Ð * ¤Ï 0 ¤«¤é 7 ¤Þ¤Ç¤Ç¤·¤ç¤¦)¤ò»È¤Ã¤Æ¥ë¡¼¥×¥Ð¥Ã¥¯¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò¥Þ¥¦¥ó ¥È¤·¤Þ¤¹¡¥¤³¤Îºî¶È¤Ï°Å¹æ²½¤òÍÑ¤¤¤º¤Ë¹Ô¤¦¤³¤È¤â¤Ç¤¡¤Linux ¥Õ¥¡¥¤¥ë¥·¥¹ ¥Æ¥à¤ò Linux °Ê³°¤Î¥Ñ¡¼¥Æ¥£¥·¥ç¥ó¤ËÃÖ¤¯¤³¤È¤¬¤Ç¤¤Þ¤¹¡¥¤³¤ì¤Ë¤Ä¤¤¤Æ½Ò¤Ù ¤¿ HOWTO Ê¸½ñ¤¬°ÊÁ°¤Ï LDP ¤Ë¤¢¤ê¤Þ¤·¤¿¡¥  ²¿¼ïÎà¤«¤Î°Å¹æ¤ò»È¤¨¤Þ¤¹¡¥Îã¤¨¤Ð XOR, DES, twofish, blowfish, cast128, serpent, MARS, RC6, DFC, IDEA ¤Ê¤É¤Ç¤¹¡¥ °Å¹æ²½¤µ¤ì¤¿¥Õ¥¡¥¤¥ë¤È¡¤¤½¤ÎÃæ¤Ë´Þ¤Þ¤ì¤ë¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ä°Å¹æ¤Î¼ïÎà¤ò ´ØÏ¢ÉÕ¤±¤ë¤Î¤Ï `losetup' (loopback setup)¥×¥í¥°¥é¥à¤ÎÌò³ä¤Ç¤¹¡¥ kerneli.org ¤È¹ñºÝÈÇ¤Î crypto ¥Ñ¥Ã¥Á¤ò´ÉÍý¤·¤Æ¤¤¤ë Alexander Kjeldaas ¤Ë¤è¤ë¤È¡¤¸½ºß¤Ï DES ¤È losetup ¤ÏÁÈ¤ß¹ç¤ï¤»¤é¤ì¤Þ¤»¤ó¡¥¤³¤ì¤ÏÎ¾¼Ô¤Ë¤ª ¤±¤ë¥Ñ¥ê¥Æ¥£¥Ó¥Ã¥È¤Î°·¤¤¤¬°Û¤Ê¤ë¤¿¤á¤Ç¤¹¡¥DES ¤ÏÂ¾¤Î°Å¹æ¤ÈÈæ¤Ù¤Æ°ÂÁ´À ¤¬¤º¤Ã¤ÈÎô¤ë¤Î¤Ç¡¤DES ¤ò¥µ¥Ý¡¼¥È¤¹¤ë·×²è¤Ï¤¢¤ê¤Þ¤»¤ó¡¥  Twofish, blowfish, cast128, serpent ¤Ï¡¤ÌÜÅª¤òÌä¤ï¤º¤Ë¼«Í³¤Ë»È¤¨¤ë¥é¥¤ ¥»¥ó¥¹¤Ç¤¹¡¥Â¾¤Ï¥é¥¤¥»¥ó¥¹¤ËÀ©¸Â¤¬ÉÔÌÀ¤Ç¤¹¡¥ ¤³¤ì¤é¤Î¤¤¤¯¤Ä¤«¤Ï¡¤AES É¸½à¤Î¸õÊä¤Ç¤¹¡¥ ºÇ½ªÅª¤Ë¾¡¤Á»Ä¤Ã¤¿°Å¹æ¤Ï¡¤»ÈÍÑÎÁ¤Ê¤·¤ÇÀ¤³¦Ãæ¤Ç»È¤¨¤ë¤è¤¦¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦¡¥  ËÜÊ¸½ñ¤Ç¤Ï serpent ¥¢¥ë¥´¥ê¥º¥à¤òÍøÍÑ¤·¤Þ¤¹¡¥¤Ê¤¼¤Ê¤é¡¤¤³¤Î°Å¹æ¤Ï ¶¯ÅÙ¤¬¹â¤¤¾å¤Ë¶Ë¤á¤Æ¹âÂ®¤Ç¡¤¤«¤Ä GPL ¤Î²¼¤Ç¼«Í³¤ËÇÛÉÛ¤Ç¤¤ë¤«¤é¤Ç¤¹¡¥ serpent ÉÕÂ°¤ÎÊ¸½ñ¤Ë¤è¤ë¤È¡¤serpent ¤Ï Ross Anderson, Eli Biham, Lars Knudsen ¤¬Àß·×¤·¤¿ 128 ¥Ó¥Ã¥È¥Ö¥í¥Ã¥¯ ¤Î°Å¹æ¤ò»È¤Ã¤Æ¤¤¤Þ¤¹¡¥¤³¤Î°Å¹æ¤Ï¡¤È´¤±Æ»¤ò»È¤Ã¤¿¹¶·â¤¬¤Ê¤¤¤³¤È¤ò¼ÂÍÑºÇ ¹âµé¤Î¥ì¥Ù¥ë¤ÇÊÝ¾Ú¤·¤Æ¤¤¤Þ¤¹¡¥ serpent ¤Ë´Ø¤¹¤ëÊ¸½ñ¤È¥½¡¼¥¹¥³¡¼¥É¤Ï°Ê²¼¤Î¾ì½ê¤«¤éÆþ¼ê¤Ç¤¤Þ¤¹: <tscreen> <url url="http://www.cl.cam.ac.uk/~rja14/serpent.html"> </tscreen>  ¤Þ¤¿ËÜÊ¸½ñ¤Ç¤Ï¡¤°Å¹æ²½¤Îµ¡¹½¤ÏÄ¾ÀÜ¥«¡¼¥Í¥ë¤ËÁÈ¤ß¹þ¤Þ¤ì¤ë¤â¤Î¤È¤·¤Þ¤¹¡¥ ¤³¤ì¤Ï¥â¥¸¥å¡¼¥ë¤È¤·¤Æ¤â¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤¤Þ¤¹¤¬¡¤¤½¤ÎÊýË¡¤ÏËÜÊ¸½ñ¤Ç¤Ï ÀâÌÀ¤·¤Þ¤»¤ó¡¥`/etc/conf.module' ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤Ç¤·¤ç¤¦¡¥ ¤³¤Î¼ê½ç¤Ï¡¤Àè¤Ë½Ò¤Ù¤¿¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤Ë´Ø¤¹¤ë HOWTO Ê¸½ñ¤Ç¾Ü¤·¤¯ ÀâÌÀ¤µ¤ì¤Æ¤¤¤Þ¤¹¡¥  <sect>¼ê½ç¤Î¤Þ¤È¤á  ºî¶È¤Ï¤¤¤¯¤Ä¤«¤Î¼ê½ç¤«¤é¤Ê¤ê¤Þ¤¹¡¥¤½¤ì¤¾¤ì¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¤¼¡¤ÎÀá <ref id="Details" name="¾ÜºÙ¤Ê¼ê½ç">¤ÇÀâÌÀ¤·¤Þ¤¹¡¥ ¥ê¥Õ¥¡¥ì¥ó¥¹¤È¤·¤Æ¤Þ¤È¤á¤òºÇ½é¤ËÍÑ°Õ¤·¤Æ¤ª¤¯¤È¤¤¤¤¤À¤í¤¦¤È¹Í¤¨¤Þ¤·¤¿ (¤â¤·ÆÉ¼Ô¤Î³§¤µ¤ó¤Î UNIX/Linux ¤Î·Ð¸³¤¬ËÉÙ¤Ê¤é¤Ð¡¤¤¤¤º¤ì¤Ë¤»¤èºÙ¤«¤¤ ÀâÌÀ¤ÏÉÔÍ×¤Ç¤·¤ç¤¦)¡¥¤Ç¤Ï¡¤¤Þ¤È¤á¤ò°Ê²¼¤Ë¼¨¤·¤Þ¤¹: <enum>  <item>¹ñºÝÈÇ°Å¹æ¥Ñ¥Ã¥Á¤ÎºÇ¿·ÈÇ¤ò°Ê²¼¤Î¾ì½ê¤«¤é¥À¥¦¥ó¥í¡¼¥É¤·¤Þ¤¹(ËÜÊ¸ ½ñ¤Î¼¹É®»þÅÀ¤Ç¤Ï `patch-int-2.2.10.4' ¤òÍÑ¤¤¤Þ¤·¤¿): <tscreen> <url url="http://ftp.kerneli.org/pub/kerneli/"> </tscreen>  <item>¥«¡¼¥Í¥ë¤Ë¥Ñ¥Ã¥Á¤òÅö¤Æ¤Þ¤¹  <item>`make config'(¤Þ¤¿¤Ï `menuconfig' ¤ä `xconfig')¤ò¼Â¹Ô¤·¤Æ¡¤¿·¤·¤¤ ¥«¡¼¥Í¥ëÍÑ¤Î `Makefile' ¤òÀßÄê¤·¤Þ¤¹¡¥°Å¹æ²½¤òÍ¸ú¤Ë¤¹¤ë¤¿¤á¤Î¥ª¥× ¥·¥ç¥ó¤Ï¡¤¤¢¤Á¤³¤Á¤Ë»¶¤é¤Ð¤Ã¤Æ¤¤¤Þ¤¹¡¥¤Þ¤º¤Ï¤È¤â¤«¤¯¡¤¤É¤Î¥ª¥×¥·¥ç¥ó¤è ¤ê¤âÁ°¤Ë `Code Maturity level options' ¤Î²¼¤Î `Prompt for development and/or incomplete code/drivers' ¤òÍ¸ú ¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡¥ ¼¡¤Ë¡¤`Crypto options' ¤Î²¼¤Î `crypto ciphers' ¤È `serpent' ¤òÍ¸ú¤Ë¤·¤Þ¤¹¡¥·«¤êÊÖ¤·¤Þ¤¹¤¬¡¤ËÜÊ¸½ñ¤Ç¤Ï serpent ¤ò»È¤¦¤â¤Î¤È ¤·¤Þ¤¹¡¥¤Ç¤â¡¤ÆÉ¼Ô¤Î³§¤µ¤ó¤Ï¹¥¤¤Ê¤â¤Î¤ò»î¤·¤Æ¤¯¤À¤µ¤¤¡¥¤¿¤À¤· 2.2.10.4 ¤Î»þÅÀ¤Ç¤Ï DES ¤È¤ÏÁÈ¤ß¹ç¤ï¤»¤é¤ì¤Ê¤¤¤³¤È¤òËº¤ì¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡¥ º£¸å¤â¤Þ¤º¥µ¥Ý¡¼¥È¤µ¤ì¤ë¤³¤È¤Ï¤Ê¤¤¤Ç¤·¤ç¤¦¡¥`Block Devices' ¤Î²¼¤Ë¤Ï¡¤ÁªÂò ¤¹¤Ù¤½ÅÍ×¤Ê¥ª¥×¥·¥ç¥ó¤¬¤¤¤¯¤Ä¤«¤¢¤ê¤Þ¤¹¡¥ `Loopback device support', `Use relative block numbers as basis for transfer functions(RECOMMENDED)', `General encryption support' ¤Ç¤¹¡¥¤³¤³¤Ç¤Ï `cast 128' ¤ä `twofish' ¤ÏÁªÂò<em/¤·¤Ê¤¤¤Ç/¤¯¤À¤µ¤¤¡¥¥Í¥Ã¥È ¥ï¡¼¥¯´ØÏ¢¤Î³Æ¼ï¹àÌÜ¤Î²¼¤Ë¤¢¤ë°Å¹æ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¤¤É¤ì¤âÁªÂò¤¹¤ëÉ¬ Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡¥¥«¡¼¥Í¥ë¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¤Ï¡¤¤³¤ì°Ê¾åºÙ¤«¤¤ÉôÊ¬¤Ë¤ÏÎ©¤ÁÆþ ¤ê¤Þ¤»¤ó¡¥¤³¤ì¤ÏËÜÊ¸½ñ¤Î¼éÈ÷ÈÏ°Ï¤Ç¤Ï¤Ê¤¤¤Î¤Ç¡¤LDP ¤Î¥µ¥¤¥È¤Ë¤¢¤ëÂ¾¤ÎÊ¸ ½ñ¤ò¤´Í÷¤Ë¤Ê¤Ã¤Æ¤¯¤À¤µ¤¤¡¥  <item>¿·¤·¤¤¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤Þ¤¹¡¥  <item>`/etc/lilo.conf' ¤òÊÔ½¸¤·¤Æ¡¤¿·¤·¤¤¥«¡¼¥Í¥ë¥¤¥á¡¼¥¸¤òÄÉ²Ã¤·¤Þ ¤¹¡¥¤½¤ì¤«¤é `lilo -v' ¤ò¼Â¹Ô¤·¤Æ¡¤¥Ö¡¼¥È¥í¡¼¥À¤Ë¤³¤Î¥«¡¼¥Í¥ë¤òÄÉ²Ã¤· ¤Þ¤¹¡¥  <item>ºÇ¿·¤Î `util-linux' ¥Ñ¥Ã¥±¡¼¥¸(É®¼Ô¤Ï `util-linux-2.9v' ¤ò»È¤Ã ¤Æ¤¤¤Þ¤¹)¤ò°Ê²¼¤Î¾ì½ê¤«¤éÆþ¼ê¤·¤Þ¤¹: <tscreen> <url url="ftp://ftp.kernel.org/pub/linux/utils/util-linux/"> </tscreen>  <item>`util-linux' ¤Î¥½¡¼¥¹¤òÅ¸³«¤·¤Þ¤¹¡¥  <item>¥í¡¼¥«¥ë¤Î `/usr/src/linux/Documentation/crypto/' ¥Ç¥£¥ì¥¯¥È¥ê ¤Ë¤¢¤ë¡¤»È¤¤¤¿¤¤°Å¹æ¤ËÂÐ±þ¤¹¤ë¥Ñ¥Ã¥Á¤òÅö¤Æ¤Þ¤¹¡¥  <item>`INSTALL' ¥Õ¥¡¥¤¥ë¤ò<em/Ãí°Õ¿¼¤¯/ÆÉ¤ó¤Ç¤¯¤À¤µ¤¤! ¤³¤Î¥Ñ¥Ã¥±¡¼ ¥¸¤Ë¤Ï¡¤¥·¥¹¥Æ¥à°ÍÂ¸¤Î¥Õ¥¡¥¤¥ë(`login', `passwd', `init' ¤È¤¤¤Ã¤¿½ÅÍ× ¤Ê¥Ä¡¼¥ë·²)¤Î¥½¡¼¥¹¥³¡¼¥É¤¬¤¿¤¯¤µ¤óÆþ¤Ã¤Æ¤¤¤Þ¤¹¡¥ MCONFIG ¥Õ¥¡¥¤¥ë¤ò¤¤¤¤²Ã¸º¤ËÊÔ½¸¤·¤Æ¤³¤ì¤é¤Î¥½¡¼¥¹¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤Æ¤·¤Þ ¤¦¤È¡¤¥·¥¹¥Æ¥à¤¬¤á¤Á¤ã¤¯¤Á¤ã¤Ë¤Ê¤ë¤«¤â¤·¤ì¤Þ¤»¤ó - µ¯Æ°¥Ç¥£¥¹¥¯¤« ¥·¥ç¥Ã¥È¥¬¥ó¤òÍÑ°Õ¤·¤Æ¤ª¤¤Þ¤·¤ç¤¦¡¥ ´ðËÜÅª¤Ë¤Ï¡¤¤Û¤È¤ó¤ÉÁ´¤Æ¤Î `HAVE_*' ¤Î¹àÌÜ¤ò `yes' ¤Ë¤·¤Æ¤ª¤¡¤½ÅÍ×¤Ê Ç§¾Ú¥Ä¡¼¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤È¾å½ñ¤¤¬¹Ô¤ï¤ì¤Ê¤¤¤è¤¦¤Ë¤·¤Æ¤ª¤¤Þ¤·¤ç¤¦¡¥ ºÆ¹½ÃÛ¤ÎÉ¬Í×¤¬¤¢¤ë¥Ä¡¼¥ë¤Ï¡¤¿·¤·¤¤°Å¹æ²½¼êË¡¤ËÂÐ±þ¤µ¤»¤ë `mount' ¤È `losetup' ¤Ç¤¹¡¥¤³¤Î¥¹¥Æ¥Ã¥×¤Ë¤Ä¤¤¤Æ¤Ï¡¤¸å½Ò¤Î <ref id="Details" name="¾ÜºÙ¤Ê¼ê½ç">¤ÎÀá¤ò»²¾È¤¹¤ë¤³¤È¤ò¤ª ´«¤á¤·¤Þ¤¹¡¥  <item>`util-linux' ¤Î¥½¡¼¥¹¤Î¥³¥ó¥Ñ¥¤¥ë¤È¥¤¥ó¥¹¥È¡¼¥ë¤ò¹Ô¤¤¤Þ¤¹¡¥  <item>¿·¤·¤¤¥«¡¼¥Í¥ë¤Ç¥Þ¥·¥ó¤òºÆµ¯Æ°¤·¤Þ¤¹¡¥  <item>`/etc/fstab' ¤òÊÔ½¸¤·¡¤°Ê²¼¤Î¤è¤¦¤Ê¥Þ¥¦¥ó¥È¥Ý¥¤¥ó¥È¤Î¹àÌÜ¤òÄÉ ²Ã¤·¤Þ¤¹: <tscreen><code> /dev/loop0 /mnt/crypt ext2 user,noauto,rw,loop 0 0 </code></tscreen>  <item>¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò¥Þ¥¦¥ó¥È¤¹¤ë¤¿¤á¤Î¥Ç¥£¥ì¥¯¥È¥ê¤òºî¤ê¤Þ¤¹¡¥ ¾åµ¤ÎÎã¤Ç¤Ï `/mnt/crypt' ¤Ç¤¹¡¥  <item>°ìÈÌ¥æ¡¼¥¶¸¢¸Â¤Ç¡¤°Å¹æ²½¤¹¤ë¥Õ¥¡¥¤¥ë¤ò°Ê²¼¤Î¤è¤¦¤Ë¤·¤Æºî¤ê¤Þ¤¹: <tscreen><verb> dd if=/dev/urandom of=/etc/cryptfile bs=1M count=10 </verb></tscreen>  <item>°Ê²¼¤Î¤è¤¦¤Ë losetup ¤ò¼Â¹Ô¤·¤Þ¤¹: <tscreen><verb> losetup -e serpent /dev/loop0 /etc/cryptfile </verb></tscreen>  ¥Ñ¥¹¥ï¡¼¥É¤òÆþÎÏ¤¹¤ëµ¡²ñ¤Ï°ìÅÙ¤·¤«¤Ê¤¤¤Î¤ÇÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡¥¥Ñ¥¹¥ï¡¼¥É ¤ÎÆó½Å¥Á¥§¥Ã¥¯¤ò¤·¤¿¤±¤ì¤Ð¡¤°Ê²¼¤Î¥³¥Þ¥ó¥É¤ò»È¤¤¤Þ¤·¤ç¤¦: <tscreen><verb> losetup -d /dev/loop0 </verb></tscreen>  ¤³¤Î¥³¥Þ¥ó¥É¤Ï loop ¥Ç¥Ð¥¤¥¹¤ò¥¢¥¯¥Æ¥£¥Ö¤Ç¤Ê¤¤¾õÂÖ¤Ë¤·¤Þ¤¹¡¥¼¡¤Ë¤â¤¦°ì ÅÙ losetup ¤ò¼Â¹Ô¤·¡¤°Ê²¼¤Î¤è¤¦¤Ë¤·¤Æ¥Ñ¥¹¥ï¡¼¥É¤ò³ÎÇ§¤·¤Þ¤¹¡¥ <tscreen><verb> losetup -e serpent /dev/loop0 /etc/cryptfile </verb></tscreen>  <item>ext2 ¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò°Ê²¼¤Î¤è¤¦¤Ë¤·¤ÆºîÀ®¤·¤Þ¤¹: <tscreen><verb> mkfs -t ext2 /dev/loop0 </verb></tscreen>  <item>¤³¤³¤Ç¡¤°Å¹æ²½¤·¤¿¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤ò°Ê²¼¤Î¥³¥Þ¥ó¥É¤Ç¥Þ¥¦¥ó¥È ¤·¤Þ¤¹: <tscreen><verb> mount -t ext2 /dev/loop0 /mnt/crypt </verb></tscreen>  <item>¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î»ÈÍÑ¤ò½ªÎ»¤·¤¿¤é¡¤°Ê²¼¤Î¥³¥Þ¥ó¥É¤Ç¥Õ¥¡¥¤¥ë ¥·¥¹¥Æ¥à¤ò¥¢¥ó¥Þ¥¦¥ó¥È¤·¤ÆÊÝ¸î¤·¤Þ¤¹: <tscreen><verb> umount /dev/loop0 losetup -d /dev/loop0 </verb></tscreen> </enum>  <sect>¾ÜºÙ¤Ê¼ê½ç<label id="Details">  <bf/¥«¡¼¥Í¥ë¤Ø¤Î¥Ñ¥Ã¥ÁÅö¤Æ:/  ¥Ñ¥Ã¥Á¤òÅö¤Æ¤Æ¡¤`2.2.x' ¥ê¥ê¡¼¥¹¤«¤é¥¢¥Ã¥×¥°¥ì¡¼¥É¤·¤Þ¤¹¡¥ `2.2.x' ¸þ¤±¤Ë¥ê¥ê¡¼¥¹¤µ¤ì¤Æ¤¤¤ë¤½¤ì¤¾¤ì¤Î¥Ñ¥Ã¥Á¤Ï¥Ð¥°½¤Àµ¤Ç¤¹¡¥ ¿·µ¡Ç½¤Ï³«È¯ÈÇ¥«¡¼¥Í¥ë¤Ç¤¢¤ë `2.3.x' ¤ËÄÉ²Ã¤µ¤ì¤Þ¤¹¡¥ ¥Ñ¥Ã¥Á¤òÅö¤Æ¤Æ¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤Ë¤Ï¡¤¸½ºß¤Î¥Ð¡¼¥¸¥ç¥ó¤è¤ê¿·¤·¤¤ ¥Ñ¥Ã¥Á¥Õ¥¡¥¤¥ë¤òÁ´¤ÆÆþ¼ê¤·¡¤°Ê²¼¤Î¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Þ¤¹: <tscreen><verb> cd /usr/src gzip -cd patchXX.gz | patch -p0 </verb></tscreen>  ¸½ºß¤Î¥½¡¼¥¹¥Ä¥ê¡¼¤è¤ê¥Ð¡¼¥¸¥ç¥óÈÖ¹æ¤¬Âç¤¤¤¤â¤Î¤òÁ´¤Æ¡¤XX ¤ËÅö¤Æ¤Ï¤á ¤Æ¤¤¤¤Þ¤¹¡¥¤³¤ì¤Ï<em/ÈÖ¹æ½ç/¤Ë¹Ô¤¤¤Þ¤¹¡¥  ¥«¡¼¥Í¥ë¥½¡¼¥¹¤Î¥Ç¥Õ¥©¥ë¥È¤Î¥Ç¥£¥ì¥¯¥È¥ê¤Ï `/usr/src/linux' ¤Ç¤¹¡¥ ¥½¡¼¥¹¤¬ÊÌ¤Î¾ì½ê¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤ë¾ì¹ç¤Ï¡¤`/usr/src/linux' ¤«¤é¥·¥ó¥Ü¥ê¥Ã¥¯¥ê¥ó¥¯¤òÄ¥¤ë¤³¤È¤ò¤ª´«¤á¤·¤Þ¤¹¡¥  <bf/`util-linux' ¥Ñ¥Ã¥±¡¼¥¸¤Î¥³¥ó¥Ñ¥¤¥ë¤Î¤¿¤á¤Ë `MCONFIG' ¤òÊÔ½¸¤·¤Þ¤¹:/  °Ê²¼¤Ë¼¨¤¹¤Î¤Ï¡¤É®¼Ô¤¬ `util-linux' ¥Ñ¥Ã¥±¡¼¥¸¤Î¥³¥ó¥Ñ¥¤¥ë¤Ë»È¤Ã¤¿ `MCONFIG' ¥Õ¥¡¥¤¥ë¤Ç¤¹¡¥¤³¤ì¤ÏÉ®¼Ô¤ÎÀßÄê(RedHat 5.2 ¤ò¤¢¤ëÄøÅÙ¥Ù¡¼¥¹¤Ë¤·¤Æ¤¤¤Þ¤¹) ¤Ë¤«¤Ê¤êÆÃ²½¤·¤Æ¤¤¤ë¤Î¤ÇÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡¥ ³Î¼Â¤Ë¼é¤ë¤Ù¤ÅÀ¤Ï¡¤`login', `getty', `passwd' ¤È¤¤¤Ã¤¿½ÅÍ×¤Ê¥·¥¹¥Æ¥à ¥Õ¥¡¥¤¥ë¤ò¾å½ñ¤¤·¤Ê¤¤¤³¤È¤Ç¤¹¡¥¤È¤ê¤¢¤¨¤º¡¤½ÅÍ×¤Ê¹Ô¤ò°Ê²¼¤Ë¼¨¤·¤Þ¤¹: <tscreen><code> CPU=$(shell uname -m | sed s/I.86/intel/) LOCALEDIR=/usr/share/locale HAVE_PAM=no HAVE_SHADOW=yes HAVE_PASSWD=yes REQUIRE_PASSWORD=yes ONLY_LISTED_SHELLS=yes HAVE_SYSVINIT=yes HAVE_SYSVINIT_UTILS=yes HAVE_GETTY=yes USE_TTY_GROUP=yes HAVE_RESET=yes HAVE_SLN=yes CC=gcc </code></tscreen>  <bf/¤ª´«¤á:/  8 ¤Ä¤Î¥ë¡¼¥×¥Ð¥Ã¥¯¥Ç¥Ð¥¤¥¹(`dev/loop0' ¤«¤é `/dev/loop7' ¤Þ¤Ç)¤Î¤É¤ì¤ò »È¤Ã¤Æ¤â¤è¤¤¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡¥¤Þ¤¿¡¤¥Þ¥¦¥ó¥È¥Ý¥¤¥ó¥È¤ÏÌÜÎ©¤¿ ¤Ê¤¤¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤·¤Þ¤·¤ç¤¦¡¥É®¼Ô¤Ï¡¤¥Û¡¼¥à¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Ë ¥Ñ¡¼¥ß¥Ã¥·¥ç¥ó 700 ¤Î¥Ç¥£¥ì¥¯¥È¥ê¤òºî¤ë¤³¤È¤ò¤ª´«¤á¤·¤Þ¤¹¡¥Æ±¤¸¤³¤È¤¬ ¥Ç¡¼¥¿¤òÆþ¤ì¤ë¥Õ¥¡¥¤¥ë¤Ë¤â¸À¤¨¤Þ¤¹¡¥ É®¼Ô¤Ï `/etc' ¥Õ¥©¥ë¥ÀÆâ¤Ë `sysfile' ¤ä `config.data' ¤È¤¤¤Ã¤¿¥Õ¥¡¥¤¥ë Ì¾¤ÇÃÖ¤¤¤Æ¤¤¤Þ¤¹¡¥¤³¤ì¤ÏÉáÄÌ¡¤¸«Æ¨¤µ¤ì¤Þ¤¹¡¥  É®¼Ô¤Ï¡¤1 ¥³¥Þ¥ó¥É¤Ç¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î¥Þ¥¦¥ó¥È¤È¥¢¥ó¥Þ¥¦¥ó¥È¤ò¹Ô¤¦¤¿¤á ¤Î¡¤¤È¤Æ¤â´ÊÃ±¤Ê Perl ¥¹¥¯¥ê¥×¥È¤ò½ñ¤¤Þ¤·¤¿¡¥°Ê²¼¤ÎÆâÍÆ¤Î¥Õ¥¡¥¤¥ë¤òºî ¤ê¡¤¤³¤ì¤ò¼Â¹Ô²ÄÇ½¤Ë¤·(chmod u+x)¡¤¥Ñ¥¹¤¬ÄÌ¤Ã¤¿¾ì½ê¤ËÃÖ¤¤¤Æ¤¯¤À¤µ¤¤¡¥ <tscreen><code> #!/usr/bin/perl -w # #minimal utility to setup loopback encryption filesystem #Copyright 1999 by Ryan T. Rhea `losetup -e serpent /dev/loop0 /etc/cryptfile`; `mount /mnt/crypt`; </code></tscreen>  ¾åµ¤Î¥¹¥¯¥ê¥×¥È¤ò `loop' ¤ÈÌ¾ÉÕ¤±¤Þ¤¹¡¥ ¤³¤ì¤ò»È¤¦¤È¡¤¥³¥Þ¥ó¥É°ì¤Ä(`loop')¤È¥Ñ¥¹¥ï¡¼¥ÉÆþÎÏ¤Ç¥Þ¥¦¥ó¥È¤ò¹Ô¤¨¤Þ¤¹¡¥ <tscreen><code> #!/usr/bin/perl -w # #minimal utility to deactivate loopback encryption filesystem #Copyright 1999 by Ryan T. Rhea `umount /mount/crypt`; `losetup -d /dev/loop0`; </code></tscreen>  2 ¤ÄÌÜ¤Î¥¹¥¯¥ê¥×¥È¤ò `unloop' ¤ÈÌ¾ÉÕ¤±¤Þ¤¹¡¥`unloop' ¤ò¼Â¹Ô¤¹¤ë¤È¡¤¤¹ ¤°¤Ë¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤òÈó¥¢¥¯¥Æ¥£¥Ö¤Ë¤Ç¤¤Þ¤¹¡¥ <sect>ÆüËÜ¸ìÌõ¤Ë¤Ä¤¤¤Æ ÆüËÜ¸ìÌõ¤Ï Linux Japanese FAQ Project ¤¬¹Ô¤¤¤Þ¤·¤¿¡£ ËÝÌõ¤Ë´Ø¤¹¤ë¤´°Õ¸«¤Ï JF ¥×¥í¥¸¥§¥¯¥È <JF@linux.or.jp> °¸¤ËÏ¢Íí¤·¤Æ¤¯¤À¤µ¤¤¡£ ²þÄûÍúÎò¤ò°Ê²¼¤Ë¼¨¤·¤Þ¤¹¡£ <descrip> <tag>v1.0j, 27 November 1999</tag> ËÝÌõ: Æ£¸¶µ±²Å <fujiwara@linux.or.jp> ¹»Àµ: <itemize> <item>¹â¾ëÀµÊ¿ <takavoid@palette.plala.or.jp> <item>ÃæÌîÉðÍº <nakano@apm.seikei.ac.jp> <item>Éð°æ¿¸÷ <takei@cc.kochi-u.ac.jp> </itemize> <tag>v1.1j, 29 November 1999</tag> ËÝÌõ: Æ£¸¶µ±²Å <fujiwara@linux.or.jp> </descrip> </article>