Re: Encrypt an existing file system.
- In reply to: 0x1eef : "Re: Encrypt an existing file system."
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 12 Jan 2023 19:50:20 UTC
On 1/12/23 11:23, 0x1eef wrote: > > Is it possible to encrypt those partitions without losing the data? > > I wanted to do that before, but found no solutions. The best, and easiest > option might be moving the data elsewhere, encrypting the disk, and > then moving the data back onto the encrypted disk. > yea that will probably be the easiest way to go using the native tooling. freebsd's encryption works tools operate on either entire disks or partitions: https://docs.freebsd.org/en/books/handbook/disks/#disks-encrypting We recently also added support for ZFS filesystem encryption as well, but it looks like you are not using ZFS: https://klarasystems.com/articles/openzfs-native-encryption/ i personally encrypt my disks using geli - then install ZFS on top of those encrypted disks. the goal for me is to ensure that if someone were to obtain one of my disks they will not be able to easily access the data on the disks (for example swapping out a failed drive in server). Cheers, -pete -- Pete Wright pete@nomadlogic.org @nomadlogicLA