Lubomir Sedlacik <s...@xtrmntr.org> writes: > On Sat, May 09, 2009 at 12:44:27PM -0400, Perry E. Metzger wrote: >> By that token, it would be of use for NetBSD to port over the >> encrypted swap features other OSes have (it should be essentially no >> performance hit), [...] > > Perry, you can use cgd(4) with random key for swap for years on NetBSD. > http://www.netbsd.org/docs/guide/en/chap-cgd.html#chap-cgd-swap-encryption
You *can*, but it requires effort to set up etc. Encrypted swap should be the default -- either using cgd or by simply encrypting the blocks as they go in and out without using the cgd layer. Perry -- Perry E. Metzger pe...@piermont.com
