hey everyone, great points all, but i have a quick question...
Regarding kernels I would like to add that none of them has usbcore built-in which is definitely required to boot from USB memory. For standard distros it would make no sense to build this module into the kernel. That´s why installable modules will never do the job.
couldn't a package maintainer keep a fully modular kernel and load usbcore from an initramfs? it seems like your usb drive would need some sort of custom initrd/initramfs to mount the encrypted root anyways, so what keeps an installer from laying down a copy of the module onto the usb drive as well? ~ brad. - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
