Am 11/13/2009 03:12 PM, schrieb Robert:
quoted text
> On Fri, 13 Nov 2009 14:50:40 +0100
> "elias r."<obsdml@crudp.ath.cx>  wrote:
>
>> Especially because OpenBSD isn't about 90% solutions i still don't
>> understand why nobody seems to be interested in finding a solution for
>> encrypting entire / (except sth like the /boot partition like it is in
>> (yeah, i know...) linux + luks.
>> E.g. certificates are normally stored in /etc and in most
>> encryption-cases you would surely like to protect them, too.
>>
>> greetings,
>>
>> Elias
>
> You also don't seem interested enough to include the necessary code. :)
> Pretty sure it's on someones todo-list.
>
> - Robert

mhh, i think the problem is that the entire boot process is based on the 
assumption that /etc is unencrypted...
and therefore a simple workaround would be a dirty hack...

i think if some efforts towards full disk encryption will be made it 
would involve more than just writing a tool for it, but also would 
include to think about the whole boot process. therefore i can 
understand why it is difficult to do steps towards it.

and because of this i think that at least the concepts should be made by 
theo or other members of the core team...

am i completely wrong?