Ping a Specific Port

Question

Bryan Agee

Asked: 2012-04-20 09:31:43 +0800 CST2012-04-20 09:31:43 +0800 CST 2012-04-20 09:31:43 +0800 CST

What are the options for storing encrypted data on FreeNAS?

772

I'm looking at implementing a mirrored pair of FreeNAS servers as file repositories. The only question still to be answered is the physical security. I typically encrypt the underlying drives on all of my servers, but it looks like that is a legacy-only feature for FreeNAS, and ZFS doesn't have an open solution to that yet.

Are there other admins with this issue who have figured out acceptable ways to solve it?

1 Answers

Voted

Chris S · Answer 1 · 2012-04-20T09:43:41+08:00

Best Answer

Chris S

2012-04-20T09:43:41+08:002012-04-20T09:43:41+08:00

FreeBSD's geom_bde or geom_eli modules allow transparent disk encryption, ZFS wouldn't even know that the underlying block storage is encrypted. Setting either up is not trivial however, there is a Handbook page describing the process. Both require the passphrase to be entered on every boot.

I personally detest the idea of FDE for servers. Physical security always trumps logical. Extending that, your servers should either be physically secure at all times, or not contain sensitive information.

3

What are the options for storing encrypted data on FreeNAS?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?