From owner-freebsd-geom@FreeBSD.ORG  Wed Feb  8 14:45:59 2006
Return-Path: <owner-freebsd-geom@FreeBSD.ORG>
X-Original-To: freebsd-geom@freebsd.org
Delivered-To: freebsd-geom@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 02CB016A446
	for <freebsd-geom@freebsd.org>; Wed,  8 Feb 2006 14:45:59 +0000 (GMT)
	(envelope-from gcubfg-freebsd-geom@m.gmane.org)
Received: from ciao.gmane.org (main.gmane.org [80.91.229.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7C00643D53
	for <freebsd-geom@freebsd.org>; Wed,  8 Feb 2006 14:45:57 +0000 (GMT)
	(envelope-from gcubfg-freebsd-geom@m.gmane.org)
Received: from list by ciao.gmane.org with local (Exim 4.43)
	id 1F6qX9-0002BQ-U2
	for freebsd-geom@freebsd.org; Wed, 08 Feb 2006 15:43:04 +0100
Received: from 87.193.38.20 ([87.193.38.20])
	by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
	id 1AlnuQ-0007hv-00
	for <freebsd-geom@freebsd.org>; Wed, 08 Feb 2006 15:43:03 +0100
Received: from christian.baer by 87.193.38.20 with local (Gmexim 0.1 (Debian))
	id 1AlnuQ-0007hv-00
	for <freebsd-geom@freebsd.org>; Wed, 08 Feb 2006 15:43:03 +0100
X-Injected-Via-Gmane: http://gmane.org/
To: freebsd-geom@freebsd.org
From: Christian Baer <christian.baer@informatik.uni-dortmund.de>
Date: Wed, 8 Feb 2006 15:40:59 +0100 (CET)
Organization: Convenimus Projekt
Lines: 30
Message-ID: <dscvtr$fd5$3@nermal.rz1.convenimus.net>
References: <dsbdfg$c1t$1@nermal.rz1.convenimus.net>
	<20060208075825.GA11037@garage.freebsd.pl>
	<dscnfu$fd5$1@nermal.rz1.convenimus.net>
	<43E9E32D.6090605@centtech.com>
X-Complaints-To: usenet@sea.gmane.org
X-Gmane-NNTP-Posting-Host: 87.193.38.20
User-Agent: slrn/0.9.8.1 (FreeBSD)
Sender: news <news@sea.gmane.org>
Subject: Re: GELI -> What to encrypt?
X-BeenThere: freebsd-geom@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: GEOM-specific discussions and implementations
	<freebsd-geom.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom>
List-Post: <mailto:freebsd-geom@freebsd.org>
List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Feb 2006 14:45:59 -0000

On Wed, 08 Feb 2006 06:25:17 -0600 Eric Anderson wrote:

> Why would the risk of losing data be higher?

I've looked into the specs a bit and I have to take that one back - the
question, that is. :-)

GBDE seems to pose a slight risk of corrupting the data on a disc if
there is a power-out at the "wrong" time. Corrupting a file system
usually is annoying but most of the data can be salvaged. If the
partition table is broken things can be a little worse. But in any case
this problem only seems to apply if the power out accurs while the
partition table is being written. The chances of that happening are
(considering my usual luck) nearly 100%. :-)

Ok, but back to the actual issue, which I haven't addressed too clearly.
I just read the stuff I've written in this thread and therefore I can
tell. :-)

I am planning on encrypting an entire disc. This disc is to have one big
partition covering basicly the whole disc. Is there any advantage to be
gained by encrypting all of ad2 rather than "just" ad2s1d? As far as I
can tell right now, the only thing not encrypted in the latter case
would be the partition table. All the data stored on the drive would be
encrypted. The advantage of encrypting just ad2s1d would be a higher
compatibility to some degree, like being able to partition the drive
with sysinstall.

Regards
Chris