Re: Encrypt OSDs on running System. A good Idea?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> What issues should I expect if I take an OSD (15TB) out one at a time,
> encrypt it, and put it back into the cluster? I would have a long period
> where some OSDs are encrypted and others are not. How dangerous is this?

I don't think it would be more dangerous than if you were redoing OSDs
for any other reasons, so if you empty the OSD, rebuild it with
--dmcrypt and refill again, you would always have the correct number
of copies. It would not be an issue that some OSDs are encrypted and
others are not, this is only an aspect of how data is stored on disk,
when the OSD is up and running it will serve the same data regardless
of the encryption status.
Encryption for OSDs is more related to what is stored on the drive
when you remove it from the server and if that is readable or not in
that state.

-- 
May the most significant bit of your life be positive.
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx



[Index of Archives]     [Information on CEPH]     [Linux Filesystem Development]     [Ceph Development]     [Ceph Large]     [Ceph Dev]     [Linux USB Development]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]     [xfs]


  Powered by Linux