Date: Fri, 20 Jul 2012 19:40:27 +0200 From: "C. P. Ghost" <cpghost@cordula.ws> To: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl> Cc: freebsd-questions@freebsd.org Subject: Re: fsck on FAT32 filesystem? Message-ID: <CADGWnjWn1YhPQz59_N-O7jfkqjqdR5b80DzoeNh2zNJvK5BRXA@mail.gmail.com> In-Reply-To: <alpine.BSF.2.00.1207201806090.3865@wojtek.tensor.gdynia.pl> References: <201207181558.q6IFwM7f033708@fire.js.berklix.net> <201207190253.q6J2r3p0070058@mail.r-bonomi.com> <CADGWnjU5Seuovn7d9pRPgwcCdeC98oKa3gBxL2D6ARMqUz9viA@mail.gmail.com> <alpine.BSF.2.00.1207201806090.3865@wojtek.tensor.gdynia.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jul 20, 2012 at 6:07 PM, Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl> wrote: >> regulations have been tightened further recently as to mandate >> sector-level encryption of the hard disks as well, just to be on the >> sure(rer) side. At least in certain particularly sensitive areas. > > which may be a proof that governments know backdoors alloving recovery > from encrypted drives using builtin "hardware encryption" (FDE). > > Not that easy with geli ;) Indeed. But getting GELI certified and approved by the relevant institutions and agencies isn't that easy either. Yet without getting both, we aren't allowed to rely on GELI as the sole encryption-provider. As an add-on on top of a certified solution, GELI wouldn't hurt though: it's a decent piece of code. -cpghost. -- Cordula's Web. http://www.cordula.ws/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADGWnjWn1YhPQz59_N-O7jfkqjqdR5b80DzoeNh2zNJvK5BRXA>