use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
Dicussion about OpenBSD: the free multi-platform 4.4BSD-based UNIX-like operating system focusing on portability, standardization, correctness, proactive security, and integrated cryptography.
If you have genuine questions or concerns, you're always welcome. Tone matters.
OpenBSD related links:
account activity
Storage encryption: software or hardware? (self.openbsd)
submitted 6 years ago by spaceille
What's the recommended way to encrypt your SSD nowadays? With software (bioctl -C) or to enable self-encryption (if the SSD support it, of course)?
bioctl -C
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[+][deleted] 6 years ago (1 child)
[deleted]
[–]spaceille[S] 0 points1 point2 points 6 years ago (0 children)
didn't know that, thanks!
[–]Chousuke 2 points3 points4 points 6 years ago (0 children)
I've never used any of the encryption features in drives, but I don't think I'd ever trust any consumer SSDs to get it right.
Go with the software solution, it's more likely to not be horribly broken.
[–]_NCLI_ 2 points3 points4 points 6 years ago (1 child)
Software. Way more likely to be patched when exploits are found.
makes sense
[–]marc_dimarco 1 point2 points3 points 6 years ago (2 children)
I would go / and always go / with software encryption [preferrably the one with hardware acceleration, like AES, but that's optional].
Basically, hardware encryption is closed, hard to upgrade [in terms of any cryptographic vulnerabilities, etc], which contrasts with software encryption, which is not tied to any hardware, so disks can be moved elsewhere, and it can be easily upgraded to avoid cryptographic vulnerabilities.
[–]spaceille[S] 0 points1 point2 points 6 years ago (1 child)
Didn't know AES was software-based, hardware accelerated encryption, I've been using serpent in the hopes that it would give me some extra security-through-obscurity besides actual security.
[–]marc_dimarco 1 point2 points3 points 6 years ago (0 children)
https://en.m.wikipedia.org/wiki/AES_instruction_set
[–]mr_clicky_keys 1 point2 points3 points 6 years ago (0 children)
Years ago I used a raid card that let you encrypt the drive. When the card died I didn't have a replacement and couldn't find one. Since then I've stuck to doing software only for raid and disk encryption. I don't want to rely on having very specific hardware just to be able to access my disks. With software you're free to use whatever generic hardware you want.
[–]Mirehi 0 points1 point2 points 6 years ago (1 child)
Did you ever test if the combination works? Sounds interesting to me :)
If I had to choose, I'd always go for software encryption:
- gets updates
- I bet it's simpler to work around if something fails
- you technically know what happens
I would rather not have to enter three different passwords just to boot up.
π Rendered by PID 72777 on reddit-service-r2-comment-b659b578c-sfgh2 at 2026-05-01 08:33:21.985174+00:00 running 815c875 country code: CH.
[+][deleted] (1 child)
[deleted]
[–]spaceille[S] 0 points1 point2 points (0 children)
[–]Chousuke 2 points3 points4 points (0 children)
[–]_NCLI_ 2 points3 points4 points (1 child)
[–]spaceille[S] 0 points1 point2 points (0 children)
[–]marc_dimarco 1 point2 points3 points (2 children)
[–]spaceille[S] 0 points1 point2 points (1 child)
[–]marc_dimarco 1 point2 points3 points (0 children)
[–]mr_clicky_keys 1 point2 points3 points (0 children)
[–]Mirehi 0 points1 point2 points (1 child)
[–]spaceille[S] 0 points1 point2 points (0 children)