> I don't know the best way, but I like how there are "check-boxes", > from what I recall, in lynx webpages.
Means in short, you like lynx. There was a long discussion at misc@ why lynx was removed from the base system. See http://marc.info/?l=openbsd-misc&r=1&w=2 to search for it. > Maybe full-disk encryption and maybe home folder encryption if it > is available are the only remaining installer options that you > don't have to have prior specialized knowledge to perform, that you > can't do after you boot into the system. Not all people want / need full disc encryption. It is no problem to configure it during installation using a shell. If full disc encryption is provided by default, how you like to handle the point if users came with the question ... can you help, I forgot my passphrase / lost my keydisc ? Counter question, what is the benefit to encrypt the home folder and the rest of the system not (see also discussions about security, pysical access to a machine and also about JavaScript) ? > But maybe the OpenBSD way is about no surprises, but it doesn't seem > right to only be able to boot into the system in the way you > want, if you have the mindset of a Computer Scientist like us, and > read the right configuration webpages. OpenBSD don't wants to be like other operating systems and, it provides the freedom to do everything you like / need / want. > Things like not having softdep mounted file systems by default > really tripped me up for a couple versions. I think, that is the same discussion as full disc encryption - do really all poeple need / want it ? There is many documentation out there like for example for full disc encryption : http://www.bsdnow.tv/tutorials/fde or books like : http://www.openbsd.org/books.html and, I think noone will bite you if you ask.
