Date: Wed, 22 Mar 2006 23:56:22 +1100 From: Norberto Meijome <freebsd@meijome.net> To: Erik Norgaard <norgaard@locolomo.org> Cc: freebsd-questions@freebsd.org Subject: Re: encrypted drives Message-ID: <20060322235622.70875566@localhost> In-Reply-To: <442124F2.3080500@locolomo.org> References: <44210DFC.6000308@locolomo.org> <442124F2.3080500@locolomo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 22 Mar 2006 11:20:34 +0100 Erik Norgaard <norgaard@locolomo.org> wrote: > Using geli appears to be the same as for gbde. Using geli here (FreeBSD 6.1-PRERELEASE #0). since this is my (work) laptop, the only (allowed) user is me - I simply use sudo as needed (IOW, yes, mdconfig , geli and mount require root access) You could create wrappers for each user with the sudo option NOPASSWORD so the users can create / mount their devices without entering their password ( "user-friendliness" ). Or setuid the bins...(without much time to think about it, i prefer sudo...) How to mount the user's homedir would require some changes to how the login process works, i guess (i.e., know that the homedir's contents are encrypted, then mount the disk...)... B
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060322235622.70875566>