Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    File level encryption in 2.1?

    Scheduled Pinned Locked Moved
    2.1 Snapshot Feedback and Problems - RETIRED
    2
    3
    1.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z
      zenny
      last edited by

      Hi:

      I saw this page (https://github.com/pfsense/pfsense-tools/tree/master/misc-scripts/config-crypto). Just wondering whether data encrytion at file level has been part of 2.1? I could not find any in the gui. Thanks!

      zenny

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        That is for dealing with importing/exporting an encrypted config.xml only. It isn't encrypted on the filesystem, it's optionally encrypted when you make a backup.

        If it were stored encrypted then you'd either need to give a password at bootup to decrypt it (terribly inconvenient, but secure), or the decryption key would have to be stored on the HDD with the config, making the whole mechanism pretty pointless.

        The first of those two might be an option in the future, but it's pretty doubtful as that would also break quite a few other things that expect to be able to grep and otherwise parse through the config to determine settings.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • Z
          zenny
          last edited by

          Thanks jimp for an explicit explanation. :D

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.