How to disable GELI selectively?
Erich Dollansky
freebsd.ed.lists at sumeritec.com
Tue Jun 19 13:44:47 UTC 2018
Hi,
On Tue, 19 Jun 2018 18:35:29 +0800
thor <thor at irk.ru> wrote:
> % cat /boot/loader.conf
> geom_eli_load="YES"
> geli_ada0p3_keyfile0_load="YES"
> geli_ada0p3_keyfile0_type="ada0p3:geli_keyfile0"
> geli_ada0p3_keyfile0_name="/boot/key"
I do not understand this ether. It should attach only the partition
mentioned above.
Can you try the following for the partitions not to attach:
geli_adaXp3_keyfile0_load="NO"
replacing the X with the real number.
Erich
> vfs.root.mountfrom="ufs:ada0p3.eli"
>
> kern.vty="sc"
> aesni_load="YES"
> nvidia_load="YES"
> linux_load="YES"
>
>
>
>
> On 06/19/18 12:24, Erich Dollansky wrote:
> > Hi,
> >
> > On Tue, 19 Jun 2018 11:39:24 +0800
> > thor <thor at irk.ru> wrote:
> >
> >> The other partitions are NOT in fstab. They are mounted manually
> >> with explicit mount and geli attach commands. Moreover, it occurs
> >> during a boot well before init gets control and spawns the mount
> >> process.
> > what is then in your /boot/loader.conf?
> >
> > Erich
> >
> >
> >> On 06/19/18 09:50, Erich Dollansky wrote:
> >>> Hi,
> >>>
> >>> On Tue, 19 Jun 2018 00:19:01 +0800
> >>> thor <thor at irk.ru> wrote:
> >>>
> >>>> Hello!
> >>>>
> >>>> Here I have a computer with 2 HDDs partitioned identically with
> >>>> GELI encrypted root as in
> >>>> https://forums.freebsd.org/threads/howto-full-disk-encryption-fast-way.19082/
> >>>>
> >>>> When I boot the computer it properly asks the passphrase
> >>>> for /dev/ada0p3 and mounts /dev/ada0p3.eli as a root.
> >>>>
> >>>> Then, it asks "Enter passphrase for gptid...." which I don't want
> >>>> since the second HDD should be attached manually when needed ONLY
> >>>> and all other time it should be unmounted. I am to press enter
> >>>> enough times to make me mad.
> >>>>
> >>>> What should I do?
> >>>>
> >>> just take all other partitions / slices out of /etc/fstab.
> >>>
> >>> Erich
> >>> _______________________________________________
> >>> freebsd-questions at freebsd.org mailing list
> >>> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> >>> To unsubscribe, send any mail to
> >>> "freebsd-questions-unsubscribe at freebsd.org"
> >> _______________________________________________
> >> freebsd-questions at freebsd.org mailing list
> >> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> >> To unsubscribe, send any mail to
> >> "freebsd-questions-unsubscribe at freebsd.org"
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
> > "freebsd-questions-unsubscribe at freebsd.org"
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list