From owner-freebsd-hackers@FreeBSD.ORG Sun Jan 18 07:20:31 2004 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C414116A4CE; Sun, 18 Jan 2004 07:20:31 -0800 (PST) Received: from afields.ca (afields.ca [216.194.67.132]) by mx1.FreeBSD.org (Postfix) with ESMTP id 59BD443D45; Sun, 18 Jan 2004 07:19:42 -0800 (PST) (envelope-from afields@afields.ca) Received: from afields.ca (localhost.afields.ca [127.0.0.1]) by afields.ca (8.12.6/8.12.6) with ESMTP id i0IFJVGo017867; Sun, 18 Jan 2004 10:19:31 -0500 (EST) (envelope-from afields@afields.ca) Received: (from afields@localhost) by afields.ca (8.12.6/8.12.6/Submit) id i0IFJVZr017866; Sun, 18 Jan 2004 10:19:31 -0500 (EST) (envelope-from afields) Date: Sun, 18 Jan 2004 10:19:31 -0500 From: Allan Fields To: "Simon L. Nielsen" Message-ID: <20040118151931.GJ34696@afields.ca> References: <20040117195358.GH34696@afields.ca> <20040118134341.GB761@arthur.nitro.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040118134341.GB761@arthur.nitro.dk> User-Agent: Mutt/1.4i X-Mailman-Approved-At: Mon, 19 Jan 2004 06:32:40 -0800 cc: freebsd-hackers@FreeBSD.org cc: shamrock@cypherpunks.to cc: phk@FreeBSD.org Subject: Re: Status GBDE attach at boot X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Allan Fields List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 Jan 2004 15:20:31 -0000 On Sun, Jan 18, 2004 at 02:43:42PM +0100, Simon L. Nielsen wrote: > On 2004.01.17 14:53:58 -0500, Allan Fields wrote: > > Hi, > > > > I'm interested to know what may be in the pipeline as far as GBDE > > boot time attach/automation support. Has anyone committed to > > implementing these features? (I don't see it anymore (on the 5.3 > > todo list) in releng pages.) > > 5.2 already has support for attaching GBDE volumes at boot by using the > /etc/rc.d/gbde script. I have been using it for a while, and it works > OK. Ahh.. ok, didn't see the changes yet. That is a straight forward approach - could there just as easily be a similar facility for other geoms? > I sent a patch yesterday to the freebsd-rc mailing list make the gbde > rc.d script work a bit better (see > http://groups.yahoo.com/group/FreeBSD-rc/message/659 ). > > > As a fstab is concerned with mount hack, this is the right approach > > I think it's better to just use a rc.d script to attach gbde volumes > before the normal filesystem mount, since it seems more "clean". Of This is good including specifying lockfile dir, but implies passphrase entry before continuing on always the console? Which brings us to passphrase from file/filedesc issue vs. from tty / on command line. Could password prompts be read from another terminal or from secure source like key device or remote terminal while the booting continues in the mean-time? > course the rc.d script could be enhanced e.g. to support random keys, > like your "temp" feature. Yup. Idea was raised previously on the lists by lucky and phk. Seems like a good idea for swap,/tmp setup. > -- > Simon L. Nielsen > FreeBSD Documentation Team Allan Fields