Bryan Everly
Cadet
- Joined
- Nov 23, 2016
- Messages
- 4
Hi everyone,
Loving my new life on FreeNAS by the way. Awesome product and I appreciate all of the hard work that has obviously gone into both it and the underlying opensource projects upon which it is based!
Anyhow, my question - I'd like to have some sort of password required after a reboot. Not a BIOS password (which is easily bypassed) but something along the lines of a LUKS or OpenBSD softraid encryption password so that, unless it is entered, the data stored at rest on the drives is useless to a bad actor who has physical access to the hardware.
I am encrypting my ZFS volumes so I'm good there, it's just that those get automounted after a boot so a scenario where someone gains physical access to the box and literally carries it away, plugs it in, boots up and voila - they have access to the data. I'd prefer the volume to not be mounted or decrypted until a password is physically entered on the console or via SSH.
Is that possible?
Thanks!
Loving my new life on FreeNAS by the way. Awesome product and I appreciate all of the hard work that has obviously gone into both it and the underlying opensource projects upon which it is based!
Anyhow, my question - I'd like to have some sort of password required after a reboot. Not a BIOS password (which is easily bypassed) but something along the lines of a LUKS or OpenBSD softraid encryption password so that, unless it is entered, the data stored at rest on the drives is useless to a bad actor who has physical access to the hardware.
I am encrypting my ZFS volumes so I'm good there, it's just that those get automounted after a boot so a scenario where someone gains physical access to the box and literally carries it away, plugs it in, boots up and voila - they have access to the data. I'd prefer the volume to not be mounted or decrypted until a password is physically entered on the console or via SSH.
Is that possible?
Thanks!