On Thu, 7 Sep 2006, Frank Steinborn wrote:
I could use /dev/fd0 directly but then I had to use the same key for
all 6 HDD's in the server. I got a solution by hacking /etc/rc.d/geli
- I'm just mounting the floppy there before it tries to read the key.
You could read different parts of the flop
--- Jack Barnett <[EMAIL PROTECTED]> wrote:
> One idea is having 1 server with a CD-ROM drive and exporting it via NFS.
> When a server boots it mounts the remote CD-ROM drive and looks for key
> "$HOSTNAME.key".
>
But then u would have the problem with network security...
> > On 9/6/06, Barkley V
--- Bob Johnson <[EMAIL PROTECTED]> wrote:
> On 9/6/06, Barkley Vowk <[EMAIL PROTECTED]> wrote:
> > You are a complete madman. You want to protect your data with a key stored
> > on the most completely and utterly unreliable form of data storage still
> > lamentably in use? Its not the 1970's anymo
That's a really good idea. - Removable media with key (so you can take it
out for security reasons) and using a key so don't have to type in a
passphrase each time.
btw, is there any good document on GELI?
One idea is having 1 server with a CD-ROM drive and exporting it via NFS.
When a server bo
On 9/6/06, Barkley Vowk <[EMAIL PROTECTED]> wrote:
You are a complete madman. You want to protect your data with a key stored
on the most completely and utterly unreliable form of data storage still
lamentably in use? Its not the 1970's anymore, get a real data storage
medium!
Get a usb flash dr
Nikos Vassiliadis wrote:
> Are you sure you want to trust a floppy disk for your keys??
> It's not the most safe medium these days...
I'll backup the keys on CD. It's just that I don't want to waste a
CD-ROM drive in this server.
> >
> > There is a problem here, because GELI initializes _before_
On Thursday 07 September 2006 00:00, Frank Steinborn wrote:
> Hello,
>
> i want to encrypt my HDD's with GELI (not the root-fs, though). I want
> to do the encryption without password, just with a key. The key should
> be stored in a floppy disk, and the read should be read automatically
> on boot,
You are a complete madman. You want to protect your data with a key stored
on the most completely and utterly unreliable form of data storage still
lamentably in use? Its not the 1970's anymore, get a real data storage
medium!
Get a usb flash drive, from there its a simple matter of changing t
Hello,
i want to encrypt my HDD's with GELI (not the root-fs, though). I want
to do the encryption without password, just with a key. The key should
be stored in a floppy disk, and the read should be read automatically
on boot, from the floppy.
There is a problem here, because GELI initializes _b