Date: Sat, 11 Jul 2015 14:15:53 +0100 From: RW <rwmaillists@googlemail.com> To: freebsd-geom@freebsd.org Subject: Re: RFC: Pass TRIM through GELI Message-ID: <20150711141553.3fcf91f4@gumby.homeunix.com> In-Reply-To: <20150710222837.GE96394@over-yonder.net> References: <20150308000131.GP1742@over-yonder.net> <20150324021924.GQ52331@over-yonder.net> <20150502125220.GS78376@over-yonder.net> <20150629013841.GO50491@over-yonder.net> <20150710200055.GB1270@garage.freebsd.pl> <20150710222837.GE96394@over-yonder.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 10 Jul 2015 17:28:37 -0500 Matthew D. Fuller wrote: > 2) Security. For whatever your threat model is, leaking the "how much > space is in use" datum is unacceptable. It's not about how much space is free, it's about giving away which blocks do and don't contain data. Perhaps more importantly TRIM breaks plausible deniabily, which was the the point of allowing the geli metadata to be store separately. You can't argue that a partition has been wiped with 'dd if=/dev/random ...' if the the partition has been subsequently trimmed.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150711141553.3fcf91f4>