Displaying 20 results from an estimated 100 matches similar to: "encrypting existing partitions/disks"
2005 Jul 29
1
booting gbde-encrypted filesystem
Hello,
I think there was already a thread on this. I just
want to raise the question again if anyone has successfully
booted an gdbe-encrypted filesystem (everything encrypted except
the bootloader). The passphrase is entered at the bootloader prompt
or embedded in the bootloader.
I appreciate any tips.
Thanks,
- ronnel
2005 Jul 31
1
Kernel Source Divergence, Security (was: booting gbde-encrypted filesystem)
In message <20050731135919.GA43753@afields.ca>, Allan Fields writes:
>Yes, this is all very nice, but when is someone actually going to
>commit it? ;)
I'm (as always) short of time, and GBDE is not the top priority
for me for the time being.
So I am more than happy to see people band together and improve
gbde.
The main work necessary is to polish the userland program and that
2006 Jan 28
1
Should I use gbde or geli?
Hello out there, everybody!
I was actually expecting to find several (hundred) threads with this
subject being discussed. To my surprise I didn't find a single one
either on these mailing lists or in the newsgroups - at least not in a
language I understand. :-)
I realize that gbde and geli are not designed to be better than the
other but that both fit different needs and different tastes.
2005 Dec 11
1
geli or gbde encryption of slices
Hello,
I was playing around with geli an gbde after last EuroBSDCon.
I liked the idea of encrypting my data which resides in /home/$user.
Since this is a "single" user laptop i intended to encrypt the
whole /home partition. Well no problems with that. But i wanted
the lockfile or keyfile on a seperate usb disc. Which would be
mounted or used during boot of the system. I also used
2006 Mar 13
0
Complete GBDE / GELI encryption for systems without removable local boot tokens (aka USB drives)
Speaking of GELI / GBDE. I was reading Marc's excellent paper on
Complete harddrive encryption for FreeBSD using GBDE/GELI and the
problem I have is it all depends on a bootable removable token that can
by physically secured. While an excellent solution for laptop /
desktop users it just doesn't work with a remote colo users. No way
you can physically remove your unsecure boot token or
2006 Jan 22
3
Encrypted volume - how?
Hi all,
I'm looking for a way to recreate the functionality of PGP Disk (under
Win32). Basically, create an encrypted file, which contains a filesystem
which can then be mounted in any mount point.
I know I can use GELI in FreeBSD 6 - as I understand, it performs the
encryption at the partition level (the whole partition is encrypted).
I'd like to be able to simply unmount my
2004 Oct 19
2
intrusion detection system
Hello to all,
I have implemented a new type of intrusion detection system for my Master
thesis. I would like to announce this information, in case anyone would be
interested in this research.
The IDS system is designed as a kernel module for FreeBSD 5.2. It is
inspired by the SpamAssassin program, which detects spam by applying a set
of tests to every email message and counting a sum of
2012 Nov 27
6
How to clean up /
Hello.
I recently upgraded to 9.1-RC3, everything went fine, however the / partition its about to get full. Im really new to FreeBSD so I don?t know what files can be deleted safely.
# find -x / -size +10000 -exec du -h {} \;
16M /boot/kernel/kernel
60M /boot/kernel/kernel.symbols
6.7M /boot/kernel/if_ath.ko.symbols
6.4M /boot/kernel/vxge.ko.symbols
9.4M
2006 Mar 27
1
FW: Re: Fw: anybody has SIP realtime working ?
Actually, I have tested this here with an Aastra 9133i and an
Asterisk@Home server, and the 9133i will re-subscribe on its own after
an Asterisk reboot, if you wait long enough. It took on the order of an
hour to do so. Of course, a phone reboot will get it done faster, if
necessary, but it _will_ eventually re-subscribe on its own.
In another thread, I've seen a response that the GXP2000
2004 Jul 09
0
LARTC related talks at Swiss Unix Conference 2004
Might be of interest for some of you, especially:
o HTB - detailed look into new QoS shaper - Martin Devera
o Linux Packet Classification Performance - Jamal Hadi Salim
o Status of IPv6 Implementations - Peter Bieringer
o High Availability using Keepalived - Alexandre Cassen
o Application Layer Fingerprinting - Hendrik Scholz
2006 Apr 29
6
wine errors
Trying to install ch i got:
me@debian:~$ su
Password:
debian:/home/me# WINEDLLOVERRIDES="ole32,oleaut32,rpcrt4=n"
wine /home/me/ch/ch.exe err:module:import_dll Library ole32.dll
(which is needed by L"c:\\windows\\system32\\shlwapi.dll") not found
err:module:import_dll Library shlwapi.dll (which is needed by L"c:
\\windows\\system32\\shell32.dll") not found
2004 Oct 17
1
TCFS on FreeBSD
Dear all,
I tried to port Transparent Cryptographic File System
(http://www.tcfs.it) OpenBSD version to FreeBSD 4.8, but failed. Has
any one tried this before? How much modification is needed? Any info is
appreciated.
Thanks,
Yan
2012 Jul 11
5
Solaris derivate with the best long-term future
As a napp-it user who recently needs to upgrade from NexentaCore I recently saw
"preferred for OpenIndiana live but running under Illumian, NexentaCore and Solaris 11 (Express)"
as a system recommendation for napp-it.
I wonder about the future of OpenIndiana and Illumian, which
fork is likely to see the most continued development, in your opinion?
Thanks.
2006 Sep 06
2
Getting GELI Keys from Floppy
Hello,
i want to encrypt my HDD's with GELI (not the root-fs, though). I want
to do the encryption without password, just with a key. The key should
be stored in a floppy disk, and the read should be read automatically
on boot, from the floppy.
There is a problem here, because GELI initializes _before_ mounting
the disks from /etc/fstab (for obvious reasons, of course). So GELI is
not able
2004 Apr 08
4
recommended SSL-friendly crypto accelerator
Hi,
I'm pondering building my own SSL accelerator out of a multi-CPU
FreeBSD system and a crypto accelerator.
What's the recommended hardware crypto accelerator card these
days?
Thanks,
==ml
--
Michael Lucas mwlucas@FreeBSD.org, mwlucas@BlackHelicopters.org
Today's chance of throwing it all away to start a goat farm: 49.1%
http://www.BlackHelicopters.org/~mwlucas/
2006 Jul 14
1
Any ongoing effort to port /etc/rc.d/pf_boot, /etc/pf.boot.conf from NetBSD ?
Hi,
[I have added freebsd-security to recipient list as I consider
this issue a security risk]
Paul Schenkeveld wrote:
> Hello,
>
> On Fri, Jul 14, 2006 at 01:26:38PM +0300, Ari Suutari wrote:
>> Hi,
>>
>> Does anyone know if there are any plans to bring
>> pf boot-time protection (ie. /etc/rc.d/pf_boot and
>> related config files) from NetBSD to FreeBSD
2006 May 15
1
encrypting databases
Hi all, your thoughts appreciated:
I''d like to encrypt one of my databases, as described in the first Rails book,
by putting encrypt and decrypt methods on the :after_find, :before_save, and
:after_save hooks in my model (what a lovely transparent way rails does
things!). But unlike the book, I actually want to use real encryption, perhaps
something from the OpenSSL library, something
2006 Mar 13
0
Encrypting data before saving
Hi,
In the pragmatic rails book, a password is hashed and saved using the
callback before_create. To do this it sets up an accessor called
''password'' and saves the SHA1 output in the backend as
''hashed_password''.
I''ve done a similar thing, but instead of using an accessor I simply use
''password'' for both and assign using:
def
2020 Oct 12
0
Re: Encrypting boot partition Libvirt not showing the OS booting up
On 10/12/20 4:27 PM, john doe wrote:
> On 10/12/2020 4:09 PM, Peter Krempa wrote:
>> On Mon, Oct 12, 2020 at 16:05:43 +0200, Michal Privoznik wrote:
>>> On 10/12/20 2:14 PM, john doe wrote:
>>>>> <snip/>
>>>>
>>>> I sent privately the requested xml file to 'Peter Krempa
>>>> <pkrempa@redhat.com>'.
2020 Oct 13
0
Re: Encrypting boot partition Libvirt not showing the OS booting up
On 10/12/20 1:10 PM, john doe wrote:
> On 10/12/2020 5:14 PM, Michal Privoznik wrote:
>> On 10/12/20 4:27 PM, john doe wrote:
>>> On 10/12/2020 4:09 PM, Peter Krempa wrote:
>>>> On Mon, Oct 12, 2020 at 16:05:43 +0200, Michal Privoznik wrote:
>>>>> On 10/12/20 2:14 PM, john doe wrote:
>>>>>>> <snip/>
>>>>>>