Hello everybody, I have just registered here because I am planning a project where I think FreeBSD could be the ideal OS.
I am currently running a dual boot system with Arch Linux and Windows 10. Both systems have FDE, Linux with LUKS (LVM) and Windows with Bitlocker, so data can not be easily moved between them.
Currently, all important data is stored inside the Linux partition which is backed up every week to an (LUKS) encrypted hdd.
Now I would like to buy/build a server for storage and a few other services (CUPS, DLNA, etc)
My requirements are:
1) The data partition or even the whole system must be encrypted (I don't need ZFS features so I was thinking about UFS2 and GELI).
It would however be nice if the server could be just powered on (maybe even over ethernet) without entering a passphrase. So maybe not encrypting the base system would be best. I do not want to use USB memories to store the system or an encryption key.
2) CUPS, DLNA and other services should run inside a jail and should never be able to access data outside of their specified directories.
3) Must be accessible from Windows and Linux (I am using mostly Linux and Windows is only used for very special software and web services that require Edge to register)
So what are your ideas on how to start with this project?
I am currently running a dual boot system with Arch Linux and Windows 10. Both systems have FDE, Linux with LUKS (LVM) and Windows with Bitlocker, so data can not be easily moved between them.
Currently, all important data is stored inside the Linux partition which is backed up every week to an (LUKS) encrypted hdd.
Now I would like to buy/build a server for storage and a few other services (CUPS, DLNA, etc)
My requirements are:
1) The data partition or even the whole system must be encrypted (I don't need ZFS features so I was thinking about UFS2 and GELI).
It would however be nice if the server could be just powered on (maybe even over ethernet) without entering a passphrase. So maybe not encrypting the base system would be best. I do not want to use USB memories to store the system or an encryption key.
2) CUPS, DLNA and other services should run inside a jail and should never be able to access data outside of their specified directories.
3) Must be accessible from Windows and Linux (I am using mostly Linux and Windows is only used for very special software and web services that require Edge to register)
So what are your ideas on how to start with this project?