Hello Bundabrg,
I am so paranoid because my first C3000 got stolen. So I worried about if the thief could reveal my passwords that way. Of course it would have needed a lot of knowledge, which the average PDA thief will probably not have, but who knows.
And having stored lots of valuable passwords there, I wanted to be sure and took a day to modify all passwords and pins after the theft.
I used to use PWM/PI which works the way you describe (only decrypt one PW, then forgetting it). But I plan to switch to another application which does it another way (decrypting the entire file). So that danger is even higher.
a swapoff -a via script is a good idea, however, it can lead to problems when a lot of applications are open when I want to access a password.
I have read some web pages about this topic, and there indeed are ways to encrypt the Linux swap space by setting up an encrypted loop device, but they all seem to require aes or other encryption kernel modules, which are not available in pdaXrom.
Or did anyone compile these modules already?
I always wanted to set up a cross compiling environment for pdaXrom, but never had the time to do so.
Another issue might be performance. If swapping action is slowed down by encryption and decryption, it may slow down the entire system significantly.
daniel
