Date: Thu, 25 Oct 2007 17:18:38 +0200 From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: freebsd-questions@FreeBSD.ORG Subject: Re: Booting a GELI encrypted hard disk Message-ID: <20071025151838.GB4511@garage.freebsd.pl> In-Reply-To: <200710251353.l9PDrY7d060982@lurza.secnetix.de> References: <20071024173858.GA1119@garage.freebsd.pl> <200710251353.l9PDrY7d060982@lurza.secnetix.de>
next in thread | previous in thread | raw e-mail | index | archive | help
--JP+T4n/bALQSJXh8 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Oct 25, 2007 at 03:53:34PM +0200, Oliver Fromme wrote: > > The pen-drive is not needed for your system to run and you can be easly > > take it with you, which is not always the case for your laptop. >=20 > Are you saying that the USB pen-drive can be removed while > the system is running (after it has booted)? I remember > that it was impossible in the past to remove the root vnode > (which in this case would be the /boot file system from the > pen-drive). Did that change recently? Or is there a way > to change the system's root vnode from the pen-drive to the > root file system on the encrypted disk? If so, then how? The boot directory is different that root file system. /boot/ directory is only accessed by loader before root file system is mounted. The root file system can be mounted from encrypted disk, because loader loads the kernel (and eventually geom_eli.ko module) from the /boot/ directory. Most of the time /boot/ directory is on the root file system, but there is no need for that - you can boot from different /boot/ directory and have different /boot/ directory in your root file system. --=20 Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --JP+T4n/bALQSJXh8 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHILPNForvXbEpPzQRAhANAJ48nlzJwDm6bp977vccd/qh9EQgkgCfYDO2 CdrBC+fh7WNdlyBJIoSS6nQ= =r4FF -----END PGP SIGNATURE----- --JP+T4n/bALQSJXh8--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071025151838.GB4511>