From owner-freebsd-questions@FreeBSD.ORG Mon Feb 16 16:10:18 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0AD1A16A4D7 for ; Mon, 16 Feb 2004 16:10:18 -0800 (PST) Received: from cpanel10.gzo.com (69-56-171-54.theplanet.com [69.56.171.54]) by mx1.FreeBSD.org (Postfix) with ESMTP id E592343D1D for ; Mon, 16 Feb 2004 16:10:17 -0800 (PST) (envelope-from dany_list@natzo.com) Received: from pcp04633543pcs.gambrl01.md.comcast.net ([68.49.69.186] helo=natzo.com) by cpanel10.gzo.com with asmtp (TLSv1:RC4-MD5:128) (Exim 4.24) id 1AssoQ-0005LL-Le; Mon, 16 Feb 2004 18:10:06 -0600 Message-ID: <40315BFF.6030508@natzo.com> Date: Mon, 16 Feb 2004 19:10:39 -0500 From: Dany Nativel User-Agent: Mozilla Thunderbird 0.5 (Windows/20040207) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Barbish3@adelphia.net References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - cpanel10.gzo.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - natzo.com cc: freebsd-questions@freebsd.org Subject: Re: GBDE - Destroy command not working X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Feb 2004 00:10:18 -0000 You'll find more information in the handbook : http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html It can be enabled as a kernel option or loaded with klload so it's no part of the port tree but rather part of the base system (I hope I use the right wording here). Below you'll find some links to relevant documents. White paper on GBDE http://phk.freebsd.dk/pubs/bsdcon-03.gbde.paper.pdf Some slides on GBDE http://phk.freebsd.dk/pubs/bsdcon-03.slides.gbde.pdf Another how-to http://bsdhound.com/newsread_print.php?newsid=63 Encrypt a USB Thumbdrive using CFS or GBDE http://www.bsdnews.org/03/cryptusb.php And the man page http://www.freebsd.org/cgi/man.cgi?query=gbde&sektion=4&apropos=0&manpath=FreeBSD+5.2-RELEASE+and+Ports JJB wrote: >Sorry I can not help you with your problem. > >An totally encrypted file system sounded very interesting, >I tried to find GBDE in the FBSD ports/package collection and >there is no hit on GBDE, or gbde, or encrypted FS. > >Would you please provide the ports name or an URL to where I >can find out more about it? > >Thanks > >-----Original Message----- >From: owner-freebsd-questions@freebsd.org >[mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Dany >Nativel >Sent: Monday, February 16, 2004 6:11 PM >To: freebsd-questions@freebsd.org >Subject: GBDE - Destroy command not working > >I've been playing around with GBDE under 5.2RC2-1. It's a fantastic >encrypted FS. >Following the man page, I've tried to use the destroy command but >without success. > >Here is what I did to create the encrypted FS (for this test I >didn't >use the /dev/random to fill-up the disc). > ># kldload geom_bde ># gbde init /dev/da0 -i ># gbde setkey /dev/da0 -n 2 ># gbde attach /dev/da0 ># newfs /dev/da0.bde ># mount /dev/da0.bde /mnt/usbkey >--> use the FS, works fine ># umount /mnt/usbkey ># gbde detach da0 > >Then according to the man page I should use : >#gbde destroy da0 -n -1 to purge all keys but I get : >gbde: illegal option -- n > >so I changed to : >#gbde destroy da0 --n -1 and got : >gbde: read: Innapropriate ioctl for device > >so I changed to : >#gbde destroy /dev/da0 --n -1 and this time I get the password >prompt >but it fails to destroy anything : >Enter passphrase: >Opened with key 0 >gbde: No -L option and no space in sector 0 for lockfile > >Maybe I didn't understand the purpose of the this command. I thought >it >was going to replace each lock key with some random data. >Can somebody explain me how to use the "destroy" command ? > >Thanks >Dany >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to >"freebsd-questions-unsubscribe@freebsd.org" > > >