On 04/11/10 12:46, Volker A. Brandt wrote:
The most paranoid will replace all the disks and then physically
destroy the old ones.
I thought the most paranoid will encrypt everything and then forget
the key... :-)
Actually, I hear that the most paranoid encrypt everything *and then*
destroy the physical media when they're done with it.
Seriously, once encrypted zfs is integrated that's a viable method.
It's certainly a new tool to help with the problem, but consider that
forgetting a key requires secure deletion of the key.
Like most cryptographic techniques, filesystem encryption only changes
the size of the problem we need to solve.
- Bill
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
