Date: Tue, 04 Nov 2014 11:17:39 -0500 From: Kris Moore <kris@pcbsd.org> To: freebsd-current@freebsd.org Subject: Re: Order of geli "passphrase prompt" on boot Message-ID: <5458FC23.40105@pcbsd.org> In-Reply-To: <20141104152426.GP66862@home.opsec.eu> References: <CADGo8CW1QT60-Z2hW4NzVVG8yHB8MvqWEJXnG2aF51cjc0jC%2Bw@mail.gmail.com> <BLU436-SMTP135FE2ACDCE9BC1B8D139AFFDA0@phx.gbl> <7e30c7a0f28d63af254422a91b28f18a@dweimer.net> <CADGo8CXrgA0ptdeWqO4-CqBo1aaWHKQcg_7hRD-5Gh79cwe0yA@mail.gmail.com> <33b02299.70afc6f7@fabiankeil.de> <20141104152426.GP66862@home.opsec.eu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 11/04/2014 10:24, Kurt Jaeger wrote: > Hi! > >> If you don't need any USB devices to boot, you can delay their >> detection by loading the modules through /etc/rc.d/kld instead >> of the loader: >> >> fk@r500 ~ $grep kld /etc/rc.conf >> kld_list="usb.ko usb_quirk.ko ehci.ko umass.ko" > Does this really help with the GENERIC kernel ? > > If I add this to /etc/rc.conf and do > > /etc/rc.d/kld start > > this spews a load of errors. > Colin added this to HEAD recently: https://github.com/freebsd/freebsd/commit/bdb0ac02b9fd8f331fa70c8a4c29495b7ee43293 This will allow setting the passphrase at the boot-loader, so it doesn't get prompted for again during boot. I think there was some work by dteske@ to add this to the FreeBSD boot menus, but maybe you can use it manually for now. We are using it in PC-BSD to supply the passphrase directly from GRUB, so we only get prompted a single time. (Before somebody asks why we use grub) We are using grub to do full-disk encryption, without a unencrypted /boot, among other things :) -- Kris Moore PC-BSD Software iXsystems
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5458FC23.40105>