Hi:
I would like to know how could one achieve something as described below:
Thanks in advance.
I would like to know how could one achieve something as described below:
- Create separate ZFS datasets for separate jails. (
zfs createmay do, I guess) - Encrypt each dataset with different keys (not the zpool itself only jails, this is where I am stuck as ZFS v28 has no encryption feature enabled as against Solaris' v30). This is a confusing part.
- Feed the encryption key (not mere password) remotely using SSH. In Linux, it is possible with
gpg < jail101.key | ssh [email=root@jail101.domain.tld]root@jail101.domain.tld[/email] \. What is the FreeBSDish way?
"xxd -p -r | losetup -p 0 -e twofish -k 256 -H sha512 /dev/loop0 /dev/md2"
Thanks in advance.