[lug] stupid encrypted hard disk question

Bear Giles bgiles at coyotesong.com
Mon May 21 18:50:02 MDT 2012 

That's a different type of encryption though. I consciously don't want the
'home directory' encryption since it's so time consuming for the stuff I do
- I tweak it so only my 'private' directory is encrypted. But at the same
time I want whole-disk encryption. The partitions are set up to support
that but apparently it never got turned on.


On Mon, May 21, 2012 at 6:35 PM, Maxwell Spangler <
maxlists at maxwellspangler.com> wrote:

> **
>
>
>  On Sat, May 19, 2012 at 2:22 PM, Stephen Queen <svqueen at gmail.com>
> wrote:
>
>  On 5/18/12, Bear Giles <bgiles at coyotesong.com> wrote:
> > I have a really stupid encrypted hard disk question.
>
>  Really important question, actually :)
>
>  > I have a system with two drives, each with three partitions.  There's a
> > small RAID-1 partition for /boot, a small non-RAID partition for swap
> > (giving two swap partitions in total - there's no point in using RAID
> with
> > swap), and the third partition is a fairly standard stack:
> >
> >  - LVM
> >  - encryption
> >  - RAID
> >
> > The issue is that when I boot the system it brings me to the login
> screen.
> > Shouldn't it take me to a screen to enter a decryption password for the
> big
> > partition? If it's reading the password from somewhere in the /boot
> > partition doesn't that defeat the whole purpose for the encryption?
> >
>
>
> Linux distributions have different ways of setting up this stack.
>
> Fedora encrypts it in such a way that the kernel will boot, you will be
> asked for the LUKS (encryption) key and then it will be able to use the
> disk.
>
> When I encrypted my personal home directory with Ubuntu, I believe it used
> my login password as the LUKS password.  So when I login with user/pass, it
> then used the same pass to access the encrypted home directory.  This
> provides a cleaner presentation to the user but seemed to me to be a little
> more complicated behind the scenes.
>
>   --
> Maxwell Spangler
> ========================================================================
> Linux System Administration / Computing Services
> Photography / Graphics Design / Writing
> Fort Collins, Colorado
> http://www.maxwellspangler.com
>
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: irc.hackingsociety.org port=6667 channel=#hackingsociety
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20120521/a1bbd255/attachment.html>

More information about the LUG mailing list