On Mon Feb 10 2003 at 02:25:13 +0100, Paul de Weerd wrote:
> On Sun, Feb 09, 2003 at 06:59:11PM -0500, David Maxwell wrote:
> | > Another question: Can i encrypt the swap space on netbsd?
> | 
> | Not by flipping a switch on your swapspace, but yes, by swapping to a
> | file on an encypted filesystem, for example.
> 
> I would prefer a native encryption in such cases. Swapping to a file
> sounds like more overhead (although I could be mistaken).

If I'm not gravely mistaken, cgd acts an an encrypting layer in front
of the disk device. So you should be able to configure a cgd partition
and use that as swap directly (eg. swap to /dev/cgd0b), no filesystem
overhead included.

(I've not done that myself, though, so I can't comment on if it really
works, but at least the cgdconfig(8) man page hints that it will work)

-- 
Antti Kantee <pooka@iki.fi>                     Of course he runs NetBSD
http://www.iki.fi/pooka/                          http://www.NetBSD.org/
                 "connoisseurs do not chill their malts."