From owner-freebsd-questions@FreeBSD.ORG Thu Nov 8 05:20:48 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E679A573 for ; Thu, 8 Nov 2012 05:20:48 +0000 (UTC) (envelope-from mike.barnardq@gmail.com) Received: from mail-ia0-f182.google.com (mail-ia0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id A6DF18FC0A for ; Thu, 8 Nov 2012 05:20:48 +0000 (UTC) Received: by mail-ia0-f182.google.com with SMTP id k10so2185948iag.13 for ; Wed, 07 Nov 2012 21:20:47 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=sVSq5VRReT9sfkEJlLLnMkiVteduT1KhIf2yD2OB3kM=; b=GlSmN5fbCzihrV1OJSuwC5TGscUdufWebwyfP1DnZ9NrYAWy0Z4HJEYfnHjp4HBLOm 3KWddOQK9/RSlD1BWlH5YIjNyZJ0DJaBiZQzi8/f8CCmnUUYYIqmwpDnzGkChmEcSk6R kvaFXsSMklfnQ8HDoX5wUJjFxsvWJ8638g9yGj93QRvqyVe/KrXtf7pL1+tBM+WjTldw XfIsoALQ3ZDrYUTjyBDR4fXgvh6EW0xGjeiLzdtoEWd6HSZ/BGAwrBC/wciRvO3b56ZU b4kr5bw7KTnZh7RD9YZYcNfcDMFJIf3KDXWe49/f7eL1F6kMzHafDIgwtvlqslLHKjHC nxww== MIME-Version: 1.0 Received: by 10.50.158.201 with SMTP id ww9mr19274879igb.22.1352352047138; Wed, 07 Nov 2012 21:20:47 -0800 (PST) Received: by 10.64.51.193 with HTTP; Wed, 7 Nov 2012 21:20:47 -0800 (PST) In-Reply-To: References: Date: Thu, 8 Nov 2012 08:20:47 +0300 Message-ID: Subject: Re: GELI Swap password on boot From: Mike Barnard To: Michael Sierchio Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Nov 2012 05:20:49 -0000 On 8 November 2012 03:30, Michael Sierchio wrote: > On Wed, Nov 7, 2012 at 4:20 PM, Mike Barnard > wrote: > > Hi, > > > > I am running FreeBSD 9.0-RELEASE and I am experiencing some strange > > behaviour with GELI. > > > > Every time I boot up my computer, I get a request to enter the Encryption > > password for swap. swap is not encrypted and should not be asking for an > > encryption password. > > > > I have checked and ensured that there are no providers for geli for the > > ada0p3 partition. Any one have pointers on what I could check for to > > rectify this. > > in /etc/fstab you should have: > > /dev/ada0p3.eli none swap sw > 0 0 > > in /etc/rc.conf you should have (something like): > > geli_swap_flags="-e aes -l 256 -s 4096 -d" > > /etc/rc.d/encswap will generate a random password > I added that when I booted and was prompted again for a password. What puzzles me is that this device is not encrypted. Why is it asking me for a password? So I encrypted it and added what you have suggested and it still asks me for a password. I'll dig a little more into it to figure out why its doing this. -- Mike Of course, you might discount this possibility, but remember that one in a million chances happen 99% of the time. ------------------------------------------------------------