Cem Kayali wrote:
Thanks for reply...
Well, i checked that before, but also heard that 'when a system with a
mounted, encrypted virtual filesystem is shutdown uncleanly, the
encrypted virtual filesystem's structures get damaged and, since
OpenBSD's fsck command will not currently acknowledge vnd filesystems,
these damaged structures can not be repaired'
That was why i asked whether it is stable or whether there are
alternate ways.
read the manpage for softraid and bioctl, it works similar to cgd:
bioctl -c C -l <a RAID partition> softraid0. note that you can encrypt
everything besides the root partition when installing from bsd.rd on the
common architectures e.g. amd64.
svnd crypto is ancient. you can indeed fsck a filesystem on an encrypted
svnd and it will take forever. if you have a large amount (>100 GB) of
data to protect you may want to consider using something other than FFS
as your file system due to the fsck time e.g. something with journaling
or zero fsck time.
Thanks.
Christian Ruesch, 05/08/09 14:32:
Hello,
take a look at: mount_vnd(8).
Kind regards
Christian
On Fri, May 08, 2009 at 02:10:13PM +0300, Cem Kayali wrote:
Hello!
I've just registered to the list and i hope this is the right list
to ask a question about OpenBSD.
I would like to ask whether OpenBSD has stable implementation of
storing data in encrypted format, similar to FreeBSD geli and
especially similar to NetBSD cgd... I have searched through Google
and some maling lists and have found OpenBSD tutorials about
creating an image and then, writing data into that image using svnd
approach but same tutorials also say there is a problem with this
if OpenBSD starts fsck while booting.
Is there currently alternative or better way? Or what would you
suggest to protect data?
Thank you in advance.
Cem
