zfs native encryption best practices on RELENG13
Andrea Venturoli
ml at netfence.it
Sat Apr 24 08:44:09 UTC 2021
On 4/23/21 11:23 PM, Xin Li via freebsd-stable wrote:
> I think loader do not support the native OpenZFS encryption yet.
> However, you can encrypt non-essential datasets on a boot pool (that is,
> if com.datto:encryption is "active" AND the bootfs dataset is not
> encrypted, you can still boot from it).
This is what my tests showed too (on 12.2 with OpenZFS from ports).
This is in contrast to what is written here:
https://openzfs.github.io/openzfs-docs/Getting%20Started/FreeBSD.html
Can we get that page corrected?
bye & Thanks
av.
More information about the freebsd-stable
mailing list