eric kustarz wrote: > > On Sep 12, 2007, at 4:31 AM, Darren J Moffat wrote: > >> The DMU layer will determine which objects in be encrypted when being >> placed in a dataset that has the encryption property turned on. >> >> http://opensolaris.org/os/project/zfs-crypto/phase1/dmu_ot/ >> >> Which of these marked as FALSE can be and should be *TRUE* ? > > I'm wondering if the DMU_OT_SPA_HISTORY object should be encrypted to > "hide" (whatever the proper security word is) the command history.
Funny you should bring that up I was considering that myself for the same reason. On the other hand I write history records when we do certain key management operations so there might be a chicken-egg problem :-) The history is already protected from end users on the system because it requires secpolicy_sys_config() pass, however that doesn't come into play once the disks are stolen and someone is looking at the raw disks elsewhere. I'll look into it and play around with it a bit. -- Darren J Moffat
