Sorry if this is a FAQ but I couldn't find it in geli(8) nor the Handbook nor on this forum.
When encrypting a disk/partition with geli using both a password and a keyfile, how big should the keyfile be? And is there a relation to the key length as specified by the -l option to the geli init command?
In concreto: suppose you do the following:
What should [red]X[/red] be?
Thanks in advance,
Alphons
When encrypting a disk/partition with geli using both a password and a keyfile, how big should the keyfile be? And is there a relation to the key length as specified by the -l option to the geli init command?
In concreto: suppose you do the following:
# dd if=/dev/random of=/somewhere/keyfile [red]bs=X[/red] count=1
# geli init -e Blowfish [red]-l 256[/red] -b -s 4096 /dev/somedisk
What should [red]X[/red] be?
Thanks in advance,
Alphons