Pre-boot authentication / geli-aware bootcode
Robert Simmons
rsimmons0 at gmail.com
Fri Jun 15 20:22:19 UTC 2012
On Fri, Jun 15, 2012 at 5:31 AM, Alaksiej Carniajeu <ac at belngo.info> wrote:
> Hi,
>
> It's not possible. But, you could have your /boot on a bootable
> usbstick, together with some keyfiles, and start from it. From
> security point of view, it is even better, than the whole drive
> encryption TrueCrypt offers, because the former relies on password
> only.
This is what I thought. Now, if I wanted to add this functionality, I
would need to modify:
/head/sys/boot/i386/pmbr/pmbr.s
and
/head/sys/boot/i386/gptboot/gptboot.c
Right?
More information about the freebsd-geom
mailing list