geli remote password entering
brouci tykadylko
brouci.tykadylko at seznam.cz
Fri Aug 24 11:17:15 UTC 2012
Thinking about encrypting everything except /boot by geli(+zfs). Since server is remote, there is a problem with entering the key after restart. There is a possibility of KVM at datacenter, but I don't want to bother with it upon every reboot, and not speaking about possibility of remote interception.
My idea so far is to use RAMdisk image with bare ssh like DropBear (like here: http://www.webgroup.ch/linuxtag2006/Paper.pdf), but i still didn't try.
Dream solution is a bootloader with a ssh interface, but I didn't hear about any for fBSD.
Did any of you try something similar? Or do you have any other idea?
thanks
Brouci
More information about the freebsd-geom
mailing list