Re: [Pcbsd-developer] 1.3 partitions layout suggestions:
Status: Beta
Brought to you by:
kmoore134
Menu
▾
▴
Re: [Pcbsd-developer] 1.3 partitions layout suggestions:
|
From: Mark A. G. <ma...@in...> - 2006-08-27 18:21:25
|
A little off topic, but I personally like creating partitions that mount under other non-root directories. For example: /usr/local: /usr `--local well the installation doesn't allow you to do this. Would it be possible for this issue to be addressed? I always find myself creating a blank partition, then formatting it manually when the system is already installed/running and adding it manually to the fstab file. -Mark Andrei Kolu wrote: > 1.3 partitions layout suggestions: > > For disk encryption feature, videly used on notebooks, I suggest to make > default partitions scheme like this: > > scheme nr1: > /boot 150MB > swap 1000MB > / rest of free space > /usr/home mounted from file:/usr/homespace (custom size, possible encrypted) > > scheme nr2: > /boot 150MB > swap 1000MB > / 2GB (userland and logs) > /usr rest of free space (/usr/home, /usr/src, /usr/port, etc...) > > Explanation: > If you need root space encryption then we need at least one "plain" space from > where we can boot kernel and where to store encryption keys. For more > information about FreeBSD encryption I'd suggest to look at this webpage: > http://events.ccc.de/congress/2005/fahrplan/events/1139.en.html > We may even make /boot partition read-only for better crash resistance. > > Another idea is to use /home as file backed encrypted filesystem- then we can > do backup by just copying /usr/homespace.eli file to NAS server or write it > onto CD/DVD. Possibilities are endless. > > We can add swap space as file based filesystem (256MB file as SWAP space): > > # dd if=/dev/null of=/usr/swap0 bs=1m count=256 > # mdconfig -a -t vnode -f /usr/swap0 -u 1 > # swapon /dev/md1 > > Type: "mdconfig -lu 1" to check md1 disk state. > > P.S. I already played with different encryption technologies here and found > FreeBSD existing features very reliable. > > > Andrei > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > PCBSD-Developer mailing list > PCB...@li... > https://lists.sourceforge.net/lists/listinfo/pcbsd-developer > > > > |
