|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: booting gbde-encrypted filesystem
From: Alexander Leidinger (Alexander
Leidinger.net)
Date: Fri Jul 29 2005 - 06:45:48 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Pawel Jakub Dawidek <pjdfreebsd.org> wrote:
> This is not not possible with current GBDE.
> I've patches which allows this here:
>
> http://people.freebsd.org/~pjd/patches/gbde.patch
I fail to see how this allows an encryted root-FS, it doesn't add gbde
support to boot0(ext) or to the loader. It needs access to an unencrypted
kernel. I don't think this is what Ronnel had in mind (overlooking the fact
that his suggestion to save the passphrase in the loader is insecure).
Bye,
Alexander.
--
http://www.Leidinger.net Alexander Leidinger.net: PGP ID = B0063FE7
http://www.FreeBSD.org netchild FreeBSD.org : PGP ID = 72077137
The man who can smile when things go wrong has thought of
someone he can blame it on.
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]