Am 11/13/2009 03:12 PM, schrieb Robert:
On Fri, 13 Nov 2009 14:50:40 +0100
"elias r."<obs...@crudp.ath.cx> wrote:
Especially because OpenBSD isn't about 90% solutions i still don't
understand why nobody seems to be interested in finding a solution for
encrypting entire / (except sth like the /boot partition like it is in
(yeah, i know...) linux + luks.
E.g. certificates are normally stored in /etc and in most
encryption-cases you would surely like to protect them, too.
greetings,
Elias
You also don't seem interested enough to include the necessary code. :)
Pretty sure it's on someones todo-list.
- Robert
mhh, i think the problem is that the entire boot process is based on the
assumption that /etc is unencrypted...
and therefore a simple workaround would be a dirty hack...
i think if some efforts towards full disk encryption will be made it
would involve more than just writing a tool for it, but also would
include to think about the whole boot process. therefore i can
understand why it is difficult to do steps towards it.
and because of this i think that at least the concepts should be made by
theo or other members of the core team...
am i completely wrong?
