On Wed, Dec 27, 2006 at 08:45:23AM -0500, Bill Sommerfeld wrote: > I think your paranoia is indeed running a bit high if the alternative is > that some blocks escape bleaching "forever" when they were freed shortly > before a crash.
Lazy bg bleaching of freed blocks is not enough if you're really paranoid about deleting things that might be cloned. (See sub-thread about bleach(2), which is off the table.) > For a portable system, the risk of theft is highest when the laptop is > unattended and idle -- and that's the point where the bleaching process > would have time to catch up; most likely, the unbleached list would be > small or empty.. For portable systems the risk is not the loss of unbleached freed blocks -- it's the loss of all those live blocks. Thus you'd need encryption. But encryption's still not enough if the system is stolen while the keys are in memory. Nico -- _______________________________________________ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
