Hey, Thorsten Glaser <t...@debian.org> wrote on 21/08/2024 at 01:34:32+0200:
> (Please d̲o̲ Cc me on replies, I don’t subscribe to this list. Thanks!) > > Hi, > > this is a bit curious problem: > > I have a setup with swap devices on dmcrypt: > > $ cat /etc/crypttab > # <target name> <source device> <key file> <options> > crtpv LABEL=fooclvm none discard,luks,initramfs > cswp1 /dev/vg-foo/lv-swp1 /dev/random > discard,cipher=aes-xts-plain64,size=256,plain,swap > cswp2 /dev/vg-foo/lv-swp2 /dev/random > discard,cipher=aes-xts-plain64,size=256,plain,swap > > In a cronjob, I basically do swapoff && cryptdisks_stop && \ > cryptdisks_start && swapon for both swaps individually to throw away > the old encryption key regularily (but not too frequently). Ooc, what do you expect to actually gain from this setup? Apart from that, I had read that discard does a bad job and prople should use a fstrim timer and drop discard options from mount points. Bests, -- PEB
signature.asc
Description: PGP signature
