On Mon, Apr 26, 2021 at 3:04 PM mike tancsa wrote:
> On 4/23/2021 11:47 PM, Peter Libassi wrote:
> > Yes, I’ve come to the same conclusion. This should be used on a
> > data-zpool and not on the system-pool (zroot). Encryption is per
> > dataset. Also if found that if the
On 4/23/2021 11:47 PM, Peter Libassi wrote:
> Yes, I’ve come to the same conclusion. This should be used on a
> data-zpool and not on the system-pool (zroot). Encryption is per
> dataset. Also if found that if the encrypted dataset is not mounted of
> some reason you will be writing t
On 4/23/2021 5:23 PM, Xin Li wrote:
> On 4/23/21 13:53, mike tancsa wrote:
>> Starting to play around with RELENG_13 and wanted explore ZFS' built in
>> encryption. Is there a best practices doc on how to do full disk
>> encryption anywhere thats not GELI based ? T
On 4/23/21 11:23 PM, Xin Li via freebsd-stable wrote:
I think loader do not support the native OpenZFS encryption yet.
However, you can encrypt non-essential datasets on a boot pool (that is,
if com.datto:encryption is "active" AND the bootfs dataset is not
encrypted, you can still bo
> 23 apr. 2021 kl. 23:23 skrev Xin Li via freebsd-stable
> :
>
> On 4/23/21 13:53, mike tancsa wrote:
>> Starting to play around with RELENG_13 and wanted explore ZFS' built in
>> encryption. Is there a best practices doc on how to do full disk
>> encry
On 4/23/21 13:53, mike tancsa wrote:
> Starting to play around with RELENG_13 and wanted explore ZFS' built in
> encryption. Is there a best practices doc on how to do full disk
> encryption anywhere thats not GELI based ? There are lots for
> GELI,
> but nothing I c
Starting to play around with RELENG_13 and wanted explore ZFS' built in
encryption. Is there a best practices doc on how to do full disk
encryption anywhere thats not GELI based ? There are lots for
GELI,
but nothing I could find for native OpenZFS encryption on FreeBSD
i.e box gets reb
gt;> gain two cores per CPU at the same time, so I'll go from an 8-way SMP
>>> system to a 12-way one.
>>>
>>> I am considering spending the money to upgrade a couple of servers here
>>> that run geli-encrypted disks, as during heavy I/O they spend a LOT of
y I/O they spend a LOT of
>> their CPU time on the disk encryption. The differences I see in the use
>> of TrueCrypt on Windows machines that have AES instructions .vs. those
>> that do not are very significant and I'm curious if this carries over to
>> FreeBSD.
>>
m to a 12-way one.
>
> I am considering spending the money to upgrade a couple of servers here
> that run geli-encrypted disks, as during heavy I/O they spend a LOT of
> their CPU time on the disk encryption. The differences I see in the use
> of TrueCrypt on Windows machines that
le of servers here
that run geli-encrypted disks, as during heavy I/O they spend a LOT of
their CPU time on the disk encryption. The differences I see in the use
of TrueCrypt on Windows machines that have AES instructions .vs. those
that do not are very significant and I'm curious if this carri
Does gbde encryption have known stability problems?
Reason I ask is in the past I remember having numerous problems with
it and tried it again today, within 30 secs of sending a file to the
partition the server died and is offline and I am waiting for it to be
rebooted (remote server)
I followed
On Sat, Feb 18, 2006 at 09:51:24AM +0100, Per olof Ljungmark wrote:
> Per olof Ljungmark wrote:
> >Well,
> >options NETSMBCRYPTO
> >options NETSMB
> >did not work out very well:
> >Do I need anything else here?
> >
> >> smb_usr.o(.text+0x4ad):/usr/src/sys/netsmb/smb_usr.c:274: undef
Per olof Ljungmark wrote:
Rebuilt from 6-STABLE sources just now and mount_smbfs fails with the
following message:
mount_smbfs: unable to open connection: syserr = Authentication error
smb_encrypt: password encryption is not available
smb_ntencrypt: password encryption is not available
I&#
Per olof Ljungmark wrote:
Well,
options NETSMBCRYPTO
options NETSMB
did not work out very well:
Do I need anything else here?
> smb_usr.o(.text+0x4ad):/usr/src/sys/netsmb/smb_usr.c:274: undefined
reference to `md_get_mem'
smb_usr.o(.text+0x4fe): In function `smb_cpdatain':
/usr
Well,
options NETSMBCRYPTO
options NETSMB
did not work out very well:
Do I need anything else here?
qual -fformat-extensions -std=c99 -g -nostdinc -I- -I. -I/usr/src/sys
-I/usr/src/sys/contrib/altq -I/usr/src/sys/contrib/ipfilter
-I/usr/src/sys/contrib/pf -I/usr/src/sys/contr
Rebuilt from 6-STABLE sources just now and mount_smbfs fails with the
following message:
mount_smbfs: unable to open connection: syserr = Authentication error
smb_encrypt: password encryption is not available
smb_ntencrypt: password encryption is not available
I'm just now making a new k
At 02:51 PM 22/03/2005, Tejas Kokje wrote:
Is there a way GEOM based disk encryption can be used with FreeBSD
4.10 kernel ? According to handbook, gdbe only works for 5.3 release.
Hi,
There was a thread about this recently on the freebsd-hackers
mailing list, and basically the answer is
Hi,
Is there a way GEOM based disk encryption can be used with FreeBSD
4.10 kernel ? According to handbook, gdbe only works for 5.3 release.
Our servers run 4.10 and there is no way we can upgrade. However we want
some kind of encrypted file system.
CFS is other option but it does not seem to be
On Thu, May 31, 2001 at 08:59:21AM -0400, Willie Bollinger wrote:
> I recently installed 4.3 on a new box but it now seems that it is using
> md5 encryption instead of des, Is there an easy way to change this so when
> I move the password file off of the old machine that it will reco
I recently installed 4.3 on a new box but it now seems that it is using
md5 encryption instead of des, Is there an easy way to change this so when
I move the password file off of the old machine that it will recognize the
des passwords
On Wed, 29 Nov 2000, David O'Brien wrote:
Dear Sir.
Thank you for replying. I see, some problems occur during
a period of time when using a system, so for that, in the past
I was told to use DES encryption due it's mentioned to be a standard,
but today's opinion seems to say th
On Wed, Nov 29, 2000 at 12:26:56PM +0100, O. Hartmann wrote:
> Last week, I installed a new user and its password seems to be
> definitely encrypted by DES, but today's encrypted passwords seems to
> be MD5 although I did not change anything
I assume this was mentioned in the 4.2 Release notes --
ted
:>> by 8 characters, so I ask myself what encryption service is the best choice ...
:>
:> As far as NIS goes, there is no password field size limiation. NIS
:>deals with the password files as key-data pairs. The sizes are not
:>important. However, the NIS client must b
On Wed, 29 Nov 2000, O. Hartmann wrote:
...
> In DES I have a password limitation of 8 characters, while FBSD's MD5 allows us
> 128 characters. But using NIS/YP limits again passwords and login to be limited
> by 8 characters, so I ask myself what encryption service is the best ch
25 matches
Mail list logo
