10.0-BETA4 bsdinstall zfs encryption broken
Darren Pilgrim
list_freebsd at bluerosetech.com
Wed Dec 4 21:09:54 UTC 2013
On 12/4/2013 12:13 PM, Ben Morrow wrote:
> Quoth Devin Teske <dteske at freebsd.org>:
>>
>> The procedure I use is to take the existing ISO and...
>>
>> 1. use mdconfig to access it
>> 2. use mount_cd9660 to mount it
>> 3. use rsync to copy the contents to a local dir
>
> It's more secure to use tar for these three steps. Filesystems generally
> aren't hardened against malicious input.
I'm curious about this statement. What extra security would tar get
you? Tar would be faster, but I can't think of how it would be more
secure since it's all going to end up on the same filesystem either way.
More information about the freebsd-stable
mailing list