Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

dant.) > > I realize the thread subject is not optimal ("SWAP should always be > inside crypto softRAID, right? (For OS crash dump data to be > encrypted.)". > > Here is the updated subject and query: > > "If I want to have crash dumps enabled, while enjoying th

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

ld be instructive. (For a production machine with dumps disabled, indeed the default swap crypto is sufficient, and indeed using swap in softraid is cryptographically redundant.) I realize the thread subject is not optimal ("SWAP should always be inside crypto softRAID, right? (For OS crash dump

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

Hello Tinker, there's a 2016-11 thread that's related: "swap on encrypted softraid, performance penalty" stsp@ https://marc.info/?l=openbsd-misc&m=143184355522545 tedu@ https://marc.info/?l=openbsd-misc&m=143206067713324 Marcus t1...@protonmail.ch (Tinker), 2018.02.08 (Thu) 19:49 (CET): > Hi m

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

Thanks kevin i missed the dump part... agree with disable dump on prod ..enable on dev On 8 Feb 2018 22:51, "Kevin Chadwick" wrote: > On Thu, 8 Feb 2018 19:39:39 + > > > > Afaik swap is encrypted anyway on OpenBSD > > It is with a random key which is actually more secure than the softraid >

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

On Thu, 8 Feb 2018 19:39:39 + > Afaik swap is encrypted anyway on OpenBSD It is with a random key which is actually more secure than the softraid key. However to the OPS question relating to dumps. I believe the answer is that dumps are helpful and OpenBSD is a developer system primarily b

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

Afaik swap is encrypted anyway on OpenBSD On 8 Feb 2018 6:52 PM, "Tinker" wrote: Hi misc@, I looked through previous discussions on whether a SWAP partition should be inside or outside the RAID partition when making a crypto softraid. The only argument I stumbled into was that it should be out

Re: SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

On Thu, February 8, 2018 1:49 pm, Tinker wrote: > Hi misc@, > > I looked through previous discussions on whether a SWAP partition > should be inside or outside the RAID partition when making a crypto > softraid. > > The only argument I stumbled into was that it should be outside because > swap is e

SWAP should always be inside crypto softRAID, right? (For OS crash dump data to be encrypted.)

Hi misc@, I looked through previous discussions on whether a SWAP partition should be inside or outside the RAID partition when making a crypto softraid. The only argument I stumbled into was that it should be outside because swap is encrypted anyhow and it would be unnecessary to double-encrypt