How safe is encrypted disks? (data integrity)
Fabian Keil
freebsd-listen at fabiankeil.de
Thu Dec 14 04:32:38 PST 2006
Erik Norgaard <norgaard at locolomo.org> wrote:
> I have been thinking to make /home on my laptop encrypted - seems like a
> good idea if it gets stolen. Now, how safe is this? Not in terms of the
> strength of the encryption algorithm, but in terms of integrity.
I have no insight on the code, but as nobody else answered,
my response may be better than nothing.
> What happens in case of power failure, the battery runs out or system
> crashes for whatever reason?
I have my home slice encrypted with GELI for several month now
and so far I didn't notice any effects on the data integrity.
I experienced several system crashes and one or two power failures
do to empty battery but I didn't lose any data already saved
on the disk (that I know of).
The only inconvenience is that the system boots to single-user
mode if the home slice isn't clean and I then have to fsck it
manually.
At that point the password for the key is already entered,
so I'm not sure why the slice can't be fscked automatically.
It could be the .eli extension, but I didn't investigate this
any further.
Fabian
--
http://www.fabiankeil.de/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20061214/f1befcf8/signature.pgp
More information about the freebsd-questions
mailing list