geli bugreport? fdisk error with non default sector size
Christian Baer
christian.baer at informatik.uni-dortmund.de
Tue Jan 31 16:51:48 PST 2006
On Tue, 31 Jan 2006 10:44:37 +0100 OxY wrote:
> i've got one question:
> is it neccesary to leave the /boot unencrypted or it has no effect
> that i get non system disk message during boot after encrypted the
> whole system disk..
I'm not sure what you are getting at, so I'll just put this in a general
statement:
You cannot boot the kernel from an encrypted file system. This would be
a little like the "chicken or the egg problem". Encrypted filesystems
cannot be read unless attached to the kernel. But without reading from
your encrypted file system, you can't boot the kernel - because it's on
there.
If you really want to encrypt *all* of your disk space, boot the kernel
from something else (CD-ROM, USB-Stick etc.).
Regards
Chris
More information about the freebsd-geom
mailing list