Hi Lars, if the OCFS2 uses the LUKS layer just as it would use any other physical storage device, there should not be any problem. A LUKS device is just a block device, like a raw disk or partition. If there are however special requirements (typically not fulfilled by a raw disk partition) on the layer below OCFS2, then LUKS likely does not qualify, just as the raw partition would not qualify. Arno On Tue, Feb 05, 2008 at 08:23:31PM +0100, Lars T?uber wrote: > Hi there, > > lately I had the idea of setting up an external storage for a small cluster. > I asked myself if I could encrypt the storage? So the question is: > Is LUKS cluster save in the following way? > > +-----------+ +-----------+ > |Linux box 1| |Linux box 2| both LUKSOpen the HDD independently evtly > +-----+-----+ +-----+-----+ with different keys > \ / both mount the OCFS2 filesystem on success > \ / > \ / > firewire \ / > or scsi \ / > or SAS +--+---+--+ > | OCFS2 | > | on | > | LUKS | > | on | > | HDD | > +---------+ > > I'm not sure if LUKS writes something to the header (or elsewhere on the storage) on a successful LUKSOpen. > > Thanks an best wishes > Lars > > --------------------------------------------------------------------- > dm-crypt mailing list - http://www.saout.de/misc/dm-crypt/ > To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx > For additional commands, e-mail: dm-crypt-help@xxxxxxxx > -- Arno Wagner, Dipl. Inform., CISSP --- CSG, ETH Zurich, arno@xxxxxxxxxxx GnuPG: ID: 1E25338F FP: 0C30 5782 9D93 F785 E79C 0296 797F 6B50 1E25 338F ---- Cuddly UI's are the manifestation of wishful thinking. -- Dylan Evans If it's in the news, don't worry about it. The very definition of "news" is "something that hardly ever happens." -- Bruce Schneier --------------------------------------------------------------------- dm-crypt mailing list - http://www.saout.de/misc/dm-crypt/ To unsubscribe, e-mail: dm-crypt-unsubscribe@xxxxxxxx For additional commands, e-mail: dm-crypt-help@xxxxxxxx
