Date: Tue, 10 Apr 2012 22:25:46 +0000 From: Fa bio <fa-h-2007@hotmail.com> To: <rwmaillists@googlemail.com>, <freebsd-geom@freebsd.org> Subject: RE: Automatic Geli? Message-ID: <COL115-W65E46CF80A4ACB0C467E84A5340@phx.gbl> In-Reply-To: <20120410231423.3a45e6d2@gumby.homeunix.com> References: <COL115-W4014B9D06091DFE170C09BA5370@phx.gbl>, <20120410231423.3a45e6d2@gumby.homeunix.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello! The ideia is: you can run the system but you cannot access the sources=20 inside it=2C what is very interesting when you work with PHP=2C for example= . So=2C when machine is off nobody can read data from it because it is encryp= ted. When you turn the machine on it automatically enter a passphase or key=20 witch are hidden somewhere that we cannot detect! Amazing! My guess is that the keys/passphrase are compiled inside the kernel=2C so=20 it=B4s quite impossible to access it=2C but at the same time you can use th= e system! I used the system without internet access and it mounted the partition=20 ok! That=B4s why I think that the "magic" is in the kernel!=20 Any ideas how it=B4s done? Regards > Date: Tue=2C 10 Apr 2012 23:14:23 +0100 > From: rwmaillists@googlemail.com > To: freebsd-geom@freebsd.org > Subject: Re: Automatic Geli? >=20 > On Mon=2C 9 Apr 2012 18:34:10 +0000 > Fa bio wrote: >=20 > > Is it possible to recompile geli/kernel to automatically enter with > > password and/or key?=20 >=20 > If that's done you no longer have encryption=2C you have obfuscation=2C > with the option to reinstate encryption.=20 >=20 > > If you see a cache system called SpeedR > > (http://www.speedr.com.br/?locale=3Den)=2C in their site you can downlo= ad > > the ISO and burn it to a CD > > (http://www.speedr.com.br/rc/speedr-0...rc18.2-x64.iso) > >=20 > > =20 > > It=B4s very interesting=2C because all partitions are encrypted with > > Geli=2C but there is no passphrase to enter at boot time or key > > directions in loader.conf file. > > ...=20 > > How is it possible? >=20 > I think the more important question is why. I don't see a good reason > for encrypting caching software=2C except maybe as part of a scheme for > enforcing their licensing. > _______________________________________________ > freebsd-geom@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-geom > To unsubscribe=2C send any mail to "freebsd-geom-unsubscribe@freebsd.org" =
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?COL115-W65E46CF80A4ACB0C467E84A5340>