Re: Howto for encrypted root?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Jacobus Brink wrote:
The Cryptoloop HOWTO does not discuss booting from an encrypted root partition. Is there a document along the lines of the Encrypted Root Filesystem HOWTO at http://linuxfromscratch.org/~devine/erfs-howto.html?

i parse your mail as "you want to know how to set up an encrypted root filesystem NOT using loop-aes but cryptoloop" - right?


well, the "official" cryptoloop howto from tldp.org is in revision 1.2. an older version of this howto (v1.1) is available here:

http://www.frech.ch/howto/HOWTO/html_single/Cryptoloop-HOWTO/

and it says in chapter 2:

"Loop-AES offers some additional features that are not yet present in the kernel implementation of Cryptoloop. If you want to encrypt the root and swap partitions, you may want to stick with Loop-AES for now."

i don't know why it was deleted from current versions of the howto.

i assume (!) you can take the loop-aes encrypted rootfs howto as a basis. you'll probably have to create an initrd for cryptoloop too, which will be present unencrypted and then (during bootup) will pivot_root to the real (encrypted) rootfs.

--
BOFH excuse #324:

Your packets were eaten by the terminator

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/


[Index of Archives]     [Kernel]     [Linux Crypto]     [Gnu Crypto]     [Gnu Classpath]     [Netfilter]     [Bugtraq]
  Powered by Linux