From 1e9e29156ddaf93ffa41139ccfede02c3ab20e19 Mon Sep 17 00:00:00 2001
From: deraadt <>
Date: Sat, 26 Mar 2005 16:06:46 +0000
Subject: [PATCH] encrypt swap by default.  cheap, and why not.  can be
 disabled by people who have machines that hit swap a lot.  decided after
 survey of developers, we found that most turned this on.  ok various

---
 src/etc/sysctl.conf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/etc/sysctl.conf b/src/etc/sysctl.conf
index 79388d49..b15fcbc7 100644
--- a/src/etc/sysctl.conf
+++ b/src/etc/sysctl.conf
@@ -1,4 +1,4 @@
-#	$OpenBSD: sysctl.conf,v 1.33 2004/09/22 17:49:39 hshoexer Exp $
+#	$OpenBSD: sysctl.conf,v 1.34 2005/03/26 16:06:46 deraadt Exp $
 #
 # This file contains a list of sysctl options the user wants set at
 # boot time.  See sysctl(3) and sysctl(8) for more information on
@@ -17,7 +17,7 @@
 #ddb.panic=0			# 0=Do not drop into ddb on a kernel panic
 #ddb.console=1			# 1=Permit entry of ddb from the console
 #fs.posix.setuid=0		# 0=Traditional BSD chown() semantics
-#vm.swapencrypt.enable=1	# 1=Encrypt pages that go to swap
+#vm.swapencrypt.enable=0	# 0=Do not encrypt pages that go to swap
 #vfs.nfs.iothreads=4		# number of nfsio kernel threads
 #net.inet.ip.mtudisc=0		# 0=disable tcp mtu discovery
 #kern.usercrypto=1		# 1=enable userland use of /dev/crypto