OpenBSD Finally Adds Guided Disk Encryption To Its Installer

Written by Michael Larabel in BSD on 10 March 2023 at 08:45 AM EST. 18 Comments
BSD
Full disk encryption is quite important in today's computing environment while some operating systems still sadly don't provide an easy and streamlined manner of setting up an encrypted disk at install-time. Thankfully with the next release of OpenBSD, they are introducing a guided disk encryption option to their installer.

As of this week merged is initial support for guided disk encryption. This is basic OpenBSD encrypted disk setup by the installer when desired, compared to the status quo of manually needing to setup any encrypted disk configuration. OpenBSD developer Klemens Nanni explained with the commit:
Initial support for guided disk encryption

One new question to cover the most common use case, such that manual setup
in (S)hell or '!' prior to install is no longer required:

Encrypt the root disk? (disk, 'no' or '?' for details) [no] ?

Create a passphrase protected CRYPTO softraid volume to be used as root disk.

Available disks are: sd0.
Encrypt the root disk? (disk, 'no' or '?' for details) [no]

Use of keydisk or different disciplines are not covered.
Only asked in interactive installations; no autoinstall(8) or upgrades.
Only reachable on i386, amd64, sparc64 and riscv64 for now (arm64 WIP).

It's great seeing this easier disk encryption setup coming to the OpenBSD installer.

OpenBSD installer


Given the usual OpenBSD release cadence, the next version should be out in April~May.
18 Comments
Related News
FreeBSD 14.2 Released With OpenZFS Upgrade, Installer Improvements
FreeBSD 14.2-RC1 Brings Install Image Improvements
FreeBSD 14.2 Beta 3 Released - FreeBSD Now Publishing OCI Container Images
FreeBSD Reduces OS Support From 5 To 4 Years, Continues Collaboration With AMD
FreeBSD 14.2 Beta 1 Released To Work Toward This Next Release
OpenBSD 7.6 Released With AVX-512, Initial Support For Snapdragon X Elite SoCs
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features
NTSYNC Linux Patches Revived To Help Boost Steam Play Gaming Performance