Date: Thu, 14 Jun 2012 19:33:36 -0400 From: Robert Simmons <rsimmons0@gmail.com> To: freebsd-geom@freebsd.org Subject: Pre-boot authentication / geli-aware bootcode Message-ID: <CA%2BQLa9ChmAL=qr00oV=hW=j0GDrS3rQWyNaVH=f3cszS%2Bm1GAg@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
I posted this question to security, but all I got back was the sound of crickets... Would it be possible to make FreeBSD's bootcode aware of geli encrypted volumes? I would like to enter the password and begin decryption so that the kernel and /boot are inside the encrypted volume. Ideally the only unencrypted area of the disk would be the gpt protected mbr and the bootcode. I know that Truecrypt is able to do something like this with its truecrypt boot loader, is something like this possible with FreeBSD without using Truecrypt?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CA%2BQLa9ChmAL=qr00oV=hW=j0GDrS3rQWyNaVH=f3cszS%2Bm1GAg>