Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 18 Dec 2006 04:32:41 +0200
From:      Alin-Adrian Anton <aanton@spintech.ro>
To:        freebsd-questions@freebsd.org
Subject:   geli load key before rootfs is mounted
Message-ID:  <4585FDC9.2080802@spintech.ro>

Next in thread | Raw E-Mail | Index | Archive | Help
Hi,

	I've been playing around with geli and I was wondering if anyone 
managed to actually use the feature which loads the keyfile before the 
root filesystem is mounted.

	Specifically, to use something similar in /boot/loader.conf:

geli_da1s3a_keyfile0_load="YES"
geli_da1s3a_keyfile0_type="da1s3a:geli_keyfile0"
geli_da1s3a_keyfile0_name="/boot/keys/da1s3a.key"

	If it worked, please let me know. I couldn't do it on a 6.1-REL0. 
(keeps saying password is wrong, probably because it doesn't "see" the 
keyfile). Of course, the .key file is on unencrypted media.

	I appreciate your time and suggestions.

Thanks,
-- 
Alin-Adrian Anton
GPG keyID 0x183087BA (B129 E8F4 7B34 15A9 0785  2F7C 5823 ABA0 1830 87BA)
gpg --keyserver pgp.mit.edu --recv-keys 0x183087BA

"It is dangerous to be right when the government is wrong." - Voltaire



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?4585FDC9.2080802>