I'am running FreeBSD on my 2 servers with encryption and works like a charm. But i would like to go one step further! Is it possible to encrypt and compress a drive? Like Geli does, typin password at boot-up?
Or is it already possible and i just don't know the name? :stud
To encrypt entire disk, easiest way is to use boot flash (if computer support booting from usb)
you need to make bootable slice (you can do it with sysinstall)
then copy /boot/kernel and make /etc/fstab on usb flash
you can add keys to flash etc etc
read the post and read posts given in links
it covers it all.
if anything i will answer.
I too use Geli encryption (24 character password) on my pentium III 500 MHZ, on a 2GB RAID Drive. And sometimes i get a 74% CPU peak but thats it. So Its time to drive it further! What amazes me further that i never expierenced any errors. In windows i'am scared about these things....!!!
The compression will compound the issue. You may notice that encryption does not eat up your entire cpu because you may be running into an i/o or bandwidth limitation on the disks. If you encrypt a ramdisk, every access will peg the cpu because there will be no disk bottleneck..
Compression is going to add another layer of cpu usage, but it will also use less disk bandwidth (because the files are smaller on disk) which will cause you to use more cpu for encryption(again, no disk bottleneck). You will trade a disk bottleneck for a cpu bottleneck.
lzof compression on zfs can use 100% of ANY cpu that you throw at it if you have enough bandwidth. I have an opensolaris, 10 disk zfs raidz2 array and lzof compression can peg 1 core of my 3ghz core2 quad (single thread) and a lot of disk access to compressed files can peg all 4 cores. This is a good thing, id rather peg the cpu and get the operation completed! The downside is that if you are trying to use the cpu for something else then performance will suffer.
is storage space so important on this system? I dont know your system specs but this would be a bad idea on a p3 500mhz or less system, like the geod alix system in a previous post. Your cpu will spend all of it's time reading and writing to the disk and no time doing any real work.