Date: Mon, 12 Oct 2009 18:20:08 +0200 From: Roland Smith <rsmith@xs4all.nl> To: Greg Morell <greg.morell@yahoo.com> Cc: freebsd-questions@freebsd.org Subject: Re: Mountable encrypted file? What to use? Message-ID: <20091012162008.GA17456@slackbox.xs4all.nl> In-Reply-To: <954220.56717.qm@web46415.mail.sp1.yahoo.com> References: <954220.56717.qm@web46415.mail.sp1.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--Nq2Wo0NMKNjxTN9z Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Oct 12, 2009 at 06:33:40AM -0700, Greg Morell wrote: > Since TrueCrypt doesn't work on FreeBSD, I'm wondering what you'd recomme= nd for this: >=20 > I like to keep all of my sensitive stuff in a few encrypted mountable fil= es. >=20 > Something where I can copy the file to a USB key for backup, but not worr= y if I lose the USB key since it's just an encrypted file. But when on a c= omputer, I can mount it as a volume. >=20 > On OS X, I use encrypted 'dmg' volumes. >=20 > On Linux and Windows, I use TrueCrypt. >=20 > What should I use on FreeBSD? You should use GELI, see geli(8). It can encrypt complete disks, partitions= or bsdlabels. If you want the encrypted stuff encased in a file, you should us= e md(4) to create a vnode-backed memory disk, and encrypt that with GELI. Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) --Nq2Wo0NMKNjxTN9z Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.13 (FreeBSD) iEYEARECAAYFAkrTVzgACgkQEnfvsMMhpyUrOACdGva/WneVqh1c17WbhG1J12xv kFAAn3SHz45N5N5YVlEzDvRza39LjiEu =7B6v -----END PGP SIGNATURE----- --Nq2Wo0NMKNjxTN9z--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20091012162008.GA17456>