From owner-freebsd-geom@FreeBSD.ORG  Tue Feb 28 11:45:22 2006
Return-Path: <owner-freebsd-geom@FreeBSD.ORG>
X-Original-To: freebsd-geom@freebsd.org
Delivered-To: freebsd-geom@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1933616A420
	for <freebsd-geom@freebsd.org>; Tue, 28 Feb 2006 11:45:22 +0000 (GMT)
	(envelope-from jackt123@gmail.com)
Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.202])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A0F0243D45
	for <freebsd-geom@freebsd.org>; Tue, 28 Feb 2006 11:45:21 +0000 (GMT)
	(envelope-from jackt123@gmail.com)
Received: by xproxy.gmail.com with SMTP id i29so714368wxd
	for <freebsd-geom@freebsd.org>; Tue, 28 Feb 2006 03:45:21 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
	b=FJWHxselWW0VEENMgK6D+s94X+iyyfV9g1hbwKg3q55O6ANRK3FRpQtgARBQ9IR2Wab49HufFrLGq6bqCgt8fR0kLXqy8NFKt4r1D39fa4LfNXtHxIHNHoal1oEApXPEabN44+g5x6Hh5NtFRXAI5wxiTSfbA0OUdruGuMZpzyQ=
Received: by 10.70.78.14 with SMTP id a14mr509759wxb;
	Tue, 28 Feb 2006 03:45:21 -0800 (PST)
Received: by 10.70.70.16 with HTTP; Tue, 28 Feb 2006 03:45:21 -0800 (PST)
Message-ID: <a1ef274e0602280345w749e39c1l1e2f7c1839832597@mail.gmail.com>
Date: Tue, 28 Feb 2006 11:45:21 +0000
From: "Jack T" <jackt123@gmail.com>
To: "Marius Nuennerich" <marius.nuennerich@gmx.net>
In-Reply-To: <20060228024303.6f164e6a@sol>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <a1ef274e0602261836m7f3eee16qf5f0bb9aead9dda@mail.gmail.com>
	<20060228024303.6f164e6a@sol>
Cc: freebsd-geom@freebsd.org
Subject: Re: GELI compatibility with GBDE
X-BeenThere: freebsd-geom@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: GEOM-specific discussions and implementations
	<freebsd-geom.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom>
List-Post: <mailto:freebsd-geom@freebsd.org>
List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Feb 2006 11:45:22 -0000

On Mon, 27 Feb 2006 Jack T wrote:
> Hi all. Sorry if this is a FAQ (I googled but
> am still unsure of the answer, and in any case
> there's too much to risk if I got it wrong)
> My question is: can GELI access
> a partition that was encrypted by GBDE?

On 2/28/06, Marius Nuennerich wrote:
> I don't think so, why should it?

Hi! I was looking at feature comparison charts.
GBDE uses AES, GELI can uses AES, Blowfish, and 3DES.
GBDE uses fixed key length, GELI can be variable.

Since they both can do sector-by-sector
encryption, and GELI can be configured to use
the same scheme and key length as GBDE,
I just thought maybe it would be great if
they're compatible.

(I have a lot of data encrypted using GBDE,
and it would be a lot of work to
re-encrypt them with GELI to get the ability
to enter keyphrase in kernel space
rather than userspace, so that I can encrypt
the root filesystem which GBDE can't do)

Thanks!

- Jack T