From owner-freebsd-questions@FreeBSD.ORG Fri Sep 19 20:34:45 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 23AC01065682 for ; Fri, 19 Sep 2008 20:34:45 +0000 (UTC) (envelope-from listy@skxpl.eu.org) Received: from rollercoaster.insane.pl (rollercoaster.insane.pl [91.121.163.205]) by mx1.freebsd.org (Postfix) with ESMTP id DEA8F8FC23 for ; Fri, 19 Sep 2008 20:34:39 +0000 (UTC) (envelope-from listy@skxpl.eu.org) Received: from piekna-gts.2a.pl ([217.153.90.242] helo=[192.168.13.13]) by rollercoaster.insane.pl with esmtpa (envelope-from ) id 1Kgm79-0006rj-16 for freebsd-questions@freebsd.org; Fri, 19 Sep 2008 21:58:03 +0200 From: skx To: freebsd-questions@freebsd.org Date: Fri, 19 Sep 2008 21:56:55 +0200 User-Agent: KMail/1.9.10 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200809192156.56635.listy@skxpl.eu.org> X-User: skx.skxpl-listy Subject: Encrypted disk on a server X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2008 20:34:45 -0000 I have a headless FreeBSD server at home serving as NAS, http server, proxy, vpn server, etc. Due to the way network infrastructure is organized the server is located in an easily accessible place (actually outside my apartment) and I am afraid it might be stolen. It's a cheap old PC, so I am mostly worried about data stored on it. What is the most convenient way of securing this data (besides moving the machine :)? Encrypting the whole disk? How would I provide the password? I am not a geek, so I would prefer a how-to or an easier solution than a lightweight sshd on /boot about which I read on the web. Maybe encrypting /home is enough? How to move current installation to the secured environment? -- skx