geli'd swap and core dumps
Carl
k0802647 at telus.net
Tue Sep 7 10:10:55 UTC 2010
On 2010-09-05 8:03 AM, Pawel Jakub Dawidek wrote:
>> What are best practices for achieving encrypted swap and functional core
>> dump recovery? Or are these mutually exclusive goals?
>
> Well, the idea to encrypt swap is to prevent any sensitive data to be
> stored on disk unencrypted where it might last for a long time.
> If you configure to dump kernel memory to a disk (kernel dumps are not
> encrypted) you kinda miss the point, as kernel memory can contain a lot
> of sensitive data.
It makes sense that best practice would be to disable the dump device,
yet it appears dumpdev is set to AUTO as the default on current versions
of FreeBSD. Does AUTO imply a behaviour that will intelligently
recognize the lack of a functional dumpdev in the case of a geli'd swap
or do I need to explicitly set dumpdev to NO to avoid errors on normal
startups or even bad behaviour during a kernel panic?
Carl / K0802647
More information about the freebsd-fs
mailing list