GELI slice encryption

mal content artifact.one at googlemail.com
Mon Feb 20 17:08:15 PST 2006


Hello.

I have been investigating a 'secure' Firefox solution. The cache,
history and other files are kept on an encrypted slice and swap
is encrypted also.

The problem I am having is that I know the shell commands required
to unmount /tmp, create providers with GELI with one-time keys,
remount /tmp, activate swap etc. but I don't know the correct way
to get this done automatically on boot.

(I'd also like to submit a patch to  the manual page to show how to
create an encrypted /tmp partition, but that comes later!).

thanks,
a1


More information about the freebsd-security mailing list