Date: Sun, 17 Apr 2011 18:25:00 +0200 From: Christian Baer <christian.baer@uni-dortmund.de> To: freebsd-geom@freebsd.org Subject: Maximum secure filesystem-size with geli Message-ID: <fc5ee742-9f3a-4418-9fe7-4062de807360@email.android.com>
next in thread | raw e-mail | index | archive | help
Hello Folks! This is quite a novum for me: The first message to a mailing list from an Android phone. :-) But since I am very far away from a "real" computer, I have to do it this was. Maybe there will be an answer by the time I get home so I can dig in directly. :-) Now I know this question has been asked before, but somehow there has never been a definite answer. What is the official maximum recommended file system size when encrypting with geli and AES or Camellia. I am not asking about the security of the ciphers (64 bit blocks like Blowfish has would not be good for modern file system sizes) or geli in itself but rather about at hat size it is recommended to make two file systems and thus creating two keys for the entire size. Does it make a diff if there are less IVs? Since newer and larger HDs now longer come with 512 byte sectory but instead with 4096 byte sectors, I guess this changes things too. Has anyone got a recommendation for me? -- Best regards from Germany! Chris
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?fc5ee742-9f3a-4418-9fe7-4062de807360>