Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 14 Jun 2012 19:33:36 -0400
From:      Robert Simmons <rsimmons0@gmail.com>
To:        freebsd-geom@freebsd.org
Subject:   Pre-boot authentication / geli-aware bootcode
Message-ID:  <CA%2BQLa9ChmAL=qr00oV=hW=j0GDrS3rQWyNaVH=f3cszS%2Bm1GAg@mail.gmail.com>

next in thread | raw e-mail | index | archive | help
I posted this question to security, but all I got back was the sound
of crickets...

Would it be possible to make FreeBSD's bootcode aware of geli encrypted volumes?

I would like to enter the password and begin decryption so that the
kernel and /boot are inside the encrypted volume.  Ideally the only
unencrypted area of the disk would be the gpt protected mbr and the
bootcode.

I know that Truecrypt is able to do something like this with its
truecrypt boot loader, is something like this possible with FreeBSD
without using Truecrypt?



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CA%2BQLa9ChmAL=qr00oV=hW=j0GDrS3rQWyNaVH=f3cszS%2Bm1GAg>