Anon Loli
2024-05-18 16:59:30 UTC
Hello mailing list!
I've had an event which includes modifying some BIOS settings (can't
remember which exactly), and testing some OS other than FreeBSD.
And I think that the said OS did something malicious to the disk in
question because it has been doing it for prolonged period of time, and
mentioned disks..
So this was all on same machine, like dual-booting but from another
drive.
Then when I went back into FreeBSD I noticed an error, `geli attach`
doesn't work, I used a /etc/rc.local script for the GELI disk like so:
`geli attach -p -k /etc/diskpassword.key /dev/ada0
zpool import zmedia`
There's only /dev/ada0, no ada0s1 for example or .eli or whatever..
Also when running `gpart show`, I see 2 disks:
xxx GPT (main boot drive)
freebsd-boot
freebsd-swap
freebsd-zfs
and
ada0 GPT (the drive in problem)
-free- (everything)
Does this indicate that everything has been lost, like the partitioning
table or whatever you call it, like it has been formatted?
Did the other evil OS-fucker destroy my disk without saying it would do
that?
If you can't tell, I'm hesitant to give more information than what's
necessary for someone to help me because almost any data can be used to
deanonymize someone, but if you do need some information, please feel
free to ask.
TL;DR: some OS could have wiped some part of a FreeBSD-zfs drive, can
you help me conclude wether or not we can somehow save it?
--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-***@muc.de
I've had an event which includes modifying some BIOS settings (can't
remember which exactly), and testing some OS other than FreeBSD.
And I think that the said OS did something malicious to the disk in
question because it has been doing it for prolonged period of time, and
mentioned disks..
So this was all on same machine, like dual-booting but from another
drive.
Then when I went back into FreeBSD I noticed an error, `geli attach`
doesn't work, I used a /etc/rc.local script for the GELI disk like so:
`geli attach -p -k /etc/diskpassword.key /dev/ada0
zpool import zmedia`
geli: Cannot read metadata from /dev/ada0: Invalid argument.
I have /var/backupts/ada.eli if that can help..There's only /dev/ada0, no ada0s1 for example or .eli or whatever..
Also when running `gpart show`, I see 2 disks:
xxx GPT (main boot drive)
freebsd-boot
freebsd-swap
freebsd-zfs
and
ada0 GPT (the drive in problem)
-free- (everything)
Does this indicate that everything has been lost, like the partitioning
table or whatever you call it, like it has been formatted?
Did the other evil OS-fucker destroy my disk without saying it would do
that?
If you can't tell, I'm hesitant to give more information than what's
necessary for someone to help me because almost any data can be used to
deanonymize someone, but if you do need some information, please feel
free to ask.
TL;DR: some OS could have wiped some part of a FreeBSD-zfs drive, can
you help me conclude wether or not we can somehow save it?
--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-***@muc.de