Date: Thu, 2 Dec 2004 18:25:34 +0100 From: Terje Elde <terje+geom@elde.net> To: Ivan Voras <ivoras@fer.hr> Cc: freebsd-geom@freebsd.org Subject: Re: More geom classes? Message-ID: <20041202172534.GW72822@calleigh.elde.net> In-Reply-To: <41AF3FCE.1030405@fer.hr> References: <41AF3FCE.1030405@fer.hr>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Dec 02, 2004 at 05:16:14PM +0100, Ivan Voras wrote: > I think I misunderstood something. Do you propose this (for 2 disks): > > for each block to be written: > a) generate a block of random data > b) write random data to first disk > c) write random data xor user data to second disk > > So, as long as any person has both disks, the data can be recovered. > Where's the security in that? That you have a filesystem that's not edible unless you have both disks. Typical usage would naturally be for two people to not have the same disks, except for when the filesystem should be accessible. A simple use-case could be using the filesystem to store CA root keys on. The filesystem would thus only be available when both (or all, og N of M) trusted people cooperate in making it available. Pendrives and similar storage could be useful. Terje
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041202172534.GW72822>