From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (unknown [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 7E7181381FA for ; Wed, 14 May 2014 00:39:31 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 8DCBCE0A98; Wed, 14 May 2014 00:39:26 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id 6D801E0A8C for ; Wed, 14 May 2014 00:39:25 +0000 (UTC) Received: from digimed.co.uk (shooty.digimed.co.uk [192.168.1.8]) by mail.digimed.co.uk (Postfix) with ESMTPA id 89D8021B7B for ; Wed, 14 May 2014 01:39:24 +0100 (BST) Date: Wed, 14 May 2014 01:39:10 +0100 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] btrfs conversion: first impressions Message-ID: <20140514013910.37678e36@digimed.co.uk> In-Reply-To: <5372A61D.9060406@xunil.at> References: <20140506121832.678ae781@marcec> <5369688C.1040708@iinet.net.au> <20140507015126.5b57fb88@marcec> <536B712E.3040009@iinet.net.au> <536BC974.9090200@xunil.at> <536D339D.9000506@xunil.at> <536E0A01.4070803@xunil.at> <536F6EA2.6030506@xunil.at> <536FA2A4.4040205@xunil.at> <536FEA92.1080502@xunil.at> <20140512163049.4f605ff0@marcec> <537112CB.7050408@xunil.at> <53729DE4.3090908@xunil.at> <20140514000228.546a90f2@hactar.digimed.co.uk> <5372A61D.9060406@xunil.at> Organization: Digital Media Production X-Mailer: Claws Mail 3.9.3-184-g39672a (GTK+ 2.24.23; x86_64-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; boundary="Sig_/iuG6dZGZqzJyIZGv6Sk1iXY"; protocol="application/pgp-signature" X-Archives-Salt: abb5ba12-f943-4cf0-a90f-93733dbc728b X-Archives-Hash: 8746b6545b0011c1e4ef7a0d1cdedd4e --Sig_/iuG6dZGZqzJyIZGv6Sk1iXY Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Wed, 14 May 2014 01:09:17 +0200, Stefan G. Weichinger wrote: > >> How to transform partitions/directories set up with cryptsetup > >> into this new world? Set up a btrfs on top of the crypted fs ? I > >> ask because I look for a clean setup for my 2 thinkpads. =20 > >=20 > > Encrypt the partition(s) with cryptsetup and them use the devices=20 > > in /dev/mapper to create the volumes. That's how I have my ZFS > > pools set up and I'm looking to do the same when I try BTRFS. =20 >=20 > Doesn't that screw up the whole idea of checksumming etc ? Not to my mind. The bits are recorded and checksummed, that's what matters. If a bit on a platter is flipped, the decrypted bits will also change. > In my understanding the FS (=3Dbtrfs or zfs) should have the direct > contact to the "metal" (=3Dhdd/sdd) to be fully able to detect bitrot > and stuff. It is a recommended method of encryption in the BTRFS FAQ. https://btrfs.wiki.kernel.org/index.php/FAQ#Does_btrfs_support_encryption.3F As btrfs does not support encryption itself, this or ecryptfs are the only options.=20 --=20 Neil Bothwick ASSISTANT MANAGER: Feminine form of the word manager (q.v.). --Sig_/iuG6dZGZqzJyIZGv6Sk1iXY Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAlNyuzMACgkQum4al0N1GQNevQCeKlHPd/djLSVh0ja/mLAQECWM YtsAoL8uymZApaXwJNh4WCwNx5roZZV+ =ejh4 -----END PGP SIGNATURE----- --Sig_/iuG6dZGZqzJyIZGv6Sk1iXY--