On Wed, 14 May 2014 01:09:17 +0200, Stefan G. Weichinger wrote: > >> How to transform partitions/directories set up with cryptsetup > >> into this new world? Set up a btrfs on top of the crypted fs ? I > >> ask because I look for a clean setup for my 2 thinkpads. > > > > Encrypt the partition(s) with cryptsetup and them use the devices > > in /dev/mapper to create the volumes. That's how I have my ZFS > > pools set up and I'm looking to do the same when I try BTRFS. > > Doesn't that screw up the whole idea of checksumming etc ?
Not to my mind. The bits are recorded and checksummed, that's what matters. If a bit on a platter is flipped, the decrypted bits will also change. > In my understanding the FS (=btrfs or zfs) should have the direct > contact to the "metal" (=hdd/sdd) to be fully able to detect bitrot > and stuff. It is a recommended method of encryption in the BTRFS FAQ. https://btrfs.wiki.kernel.org/index.php/FAQ#Does_btrfs_support_encryption.3F As btrfs does not support encryption itself, this or ecryptfs are the only options. -- Neil Bothwick ASSISTANT MANAGER: Feminine form of the word manager (q.v.).
signature.asc
Description: PGP signature
