Bug 208578 - Wrong description of master key in chapter 17.12.2 (Disk Encryption with geli)
Summary: Wrong description of master key in chapter 17.12.2 (Disk Encryption with geli)
Status: In Progress
Alias: None
Product: Documentation
Classification: Unclassified
Component: Documentation (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Allan Jude
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2016-04-06 12:43 UTC by wout
Modified: 2018-06-17 15:31 UTC (History)
1 user (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description wout 2016-04-06 12:43:33 UTC
In Procedure 17.4 step 2 (Generate the Master Key) there is a wrong description of the master key:

"The following commands generate a master key (/root/da2.key) that is protected with a passphrase."

/root/da2.key is NOT the master key. The master key is random and each stored copy of the master key is encrypted with a user key, which in turn is generated by the geli utility from a passphrase and/or a key file (see KEY SUMMARY in geli(8)).

I suggest changing the sentence into:

"The following commands generate a master key that is protected with a key file (/root/da2.key) and a passphrase."
Comment 1 Allan Jude freebsd_committer 2018-06-17 15:31:15 UTC
https://reviews.freebsd.org/D15866