On Sun, 12 Jul 2015 15:21:41 -0400, Rich Freeman wrote: > While some kind of native support would be nice, and likely more > efficient in some ways, you could just layer btrfs on top of an > encrypted loopback device.
The problem with that approach, if you use RAID, is that all writes must be encrypted multiple times, once for each disk, unless you use MD RAID between the disk and the encryption layer. > The problem is you'll need various scripts > in your initramfs (or root partition if you don't bother to encrypt > it) to actually set that up. With a single device, Dracut handles all this automatically. I have such a setup on my laptop and used to use custom scripts to call cryptsetup at boot time, until I got fed up with you and Canek banging on about Dracut and decided to give it another go. With the right boot options, it just works. -- Neil Bothwick Any sufficiently advanced bug is indistinguishable from a feature.
pgpLGZoheOcYT.pgp
Description: OpenPGP digital signature
