[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Encrypted block devices and RAID
- From: Alexander Todorov <atodorov redhat com>
- To: Discussion of Development and Customization of the Red Hat Linux Installer <anaconda-devel-list redhat com>
- Subject: Encrypted block devices and RAID
- Date: Tue, 12 Feb 2008 08:48:01 +0100
Hi folks,
browsing through the kickstart page on the wiki I found that both the
part and raid commands have the --encrypted options.
What will happen when mixing them as in the example below:
part raid.01 --size=60 --ondisk=sda
part raid.02 --size=60 --ondisk=sdb --encrypted
part raid.03 --size=60 --ondisk=sdc
part raid.11 --size=1 --grow --ondisk=sda
part raid.12 --size=1 --grow --ondisk=sdb --encrypted
part raid.13 --size=1 --grow --ondisk=sdc
raid / --level=1 --device=md0 raid.01 raid.02 raid.03 --encrypted
raid /usr --level=5 --device=md1 raid.11 raid.12 raid.13
Possible answers:
1) Error: RAID array(md0 / md1) containing encrypted and non-encrypted
partitions
2) Only raid.12 (say /dev/sdb2) will be encrypted but the RAID array
will be not. This meaning that "raw" data on other disks is not encrypted.
3) / will be encrypted because its underlying RAID device(md0) will be
encrypted. The encryption for raid.02 (say /dev/sdb1) will be ignored.
Raw data on disks is encrypted with a single pass phrase.
4) / will be encrypted (see #3). Additionally raid.02 is also encrypted
with another pass phrase. This is RAID 1 (mirroring) and raw data on
discs will be different because it's encrypted with 2 passwords.
Which ones of the above are true?
Thanks,
Alexander.
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]