Date: Wed, 22 Mar 2006 04:51:46 -0400 From: Duane Whitty <duane@greenmeadow.ca> To: Erik Norgaard <norgaard@locolomo.org> Cc: freebsd-questions@freebsd.org Subject: Re: encrypted drives Message-ID: <44211022.8010906@greenmeadow.ca> In-Reply-To: <44210DFC.6000308@locolomo.org> References: <44210DFC.6000308@locolomo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Erik Norgaard wrote: > Hi: > > 1) I was thinking, what is the performance penalty of storing data on > an encrypted device? Sure, for writing documents, coding and stuff, I > guess the performance loss is insignificant, but for music and video > which then needs to be decrypted and then decoded, is this a problem? > > 2) One thing is to create an entire encrypted device for /home. But > that have the unfortunate consequence that other user's data is > unencrypted once the system is up. > > What would be more appropriate is a solution where each home-dir is an > encrypted mfs which is decrypted and mounted when the user log in, is > this possible? > > If not, then the alternative would be to have a private mfs in the > user's home dir which is mounted after login, but I think yet the user > needs root access to mount encrypted devices. > > Is there any possibility for users to mount their own encrypted mfs? > > Thanks, Erik > Hi Erik, Perhaps this would interest you: http://events.ccc.de/congress/2005/fahrplan/attachments/586-paper_Complete_Hard_Disk_Encryption.pdf --Duane
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44211022.8010906>