diff options
author | Pawel Jakub Dawidek <pjd@FreeBSD.org> | 2007-03-05 12:39:49 +0000 |
---|---|---|
committer | Pawel Jakub Dawidek <pjd@FreeBSD.org> | 2007-03-05 12:39:49 +0000 |
commit | 5b110804b1672379c853c3ecc19e70c4de855483 (patch) | |
tree | aefa1c8a39eaf86c9f77e98bf7f45472c12c1141 /sbin | |
parent | 4c55d3dc27cf336ed5854ab080e3334bc2c41cde (diff) | |
download | src-5b110804b1672379c853c3ecc19e70c4de855483.tar.gz src-5b110804b1672379c853c3ecc19e70c4de855483.zip |
Fix incorrect comment. Geli will protect against data modification, of
course! It won't protect against reply attacks - try harder to explain
them correctly.
MFC after: 1 week
Notes
Notes:
svn path=/head/; revision=167227
Diffstat (limited to 'sbin')
-rw-r--r-- | sbin/geom/class/eli/geli.8 | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/sbin/geom/class/eli/geli.8 b/sbin/geom/class/eli/geli.8 index d86f5279ea87..3f1da7286893 100644 --- a/sbin/geom/class/eli/geli.8 +++ b/sbin/geom/class/eli/geli.8 @@ -630,12 +630,13 @@ The offset and size of the corrupted data will be printed on the console. It is important to know against which attacks .Nm provides protection for your data. -If data is modified or copied from one place on the disk -to another, +If data is modified in-place or copied from one place on the disk +to another even without modification, .Nm -should be able to detect such a modification. -If an attacker can remember the encrypted data, modify them and write them -back to the same place, the modification will not be detected. +should be able to detect such a change. +If an attacker can remember the encrypted data, he can overwrite any future +changes with the data he owns without notice. +In other words .Nm will not protect your data against replay attacks. .Sh SEE ALSO |