[lug] stupid encrypted hard disk question
Bear Giles
bgiles at coyotesong.com
Tue May 22 14:47:45 MDT 2012
My partitions are well under half of the current vg and I have a 500GB
eSATA drive with a second vg on top of that so disk usage is not an issue.
In fact /home still lives on the eSATA drive since I haven't copied it over
yet - the current vg just has / and /opt.
The 11.04 alternate loader let me set up LVM over an encrypted partition
but it clearly never turned on the encryption. I obviously just need to
make sure that grub and encryption under / are kept in sync.
On Tue, May 22, 2012 at 1:42 PM, Sean Reifschneider <jafo at tummy.com> wrote:
> On 05/22/2012 01:34 PM, Bear Giles wrote:
> > How do I turn on encryption now? My stack is LVM/Encryption/RAID1.
>
> As far as I know, you're probably looking at re-installing if you want to
> set up encrypted LVM. You could likely do tricks with reducing the size of
> your file-systems if you are using under half, then setting up another
> partition with crypto and adding it to the volume group, and doing a
> "pvmove" to move all the extents to the crypto volume. Then remove the
> unencrypted volume from the group, and shuffle things around so you can
> resize. Just make sure that the boot loader now knows to ask for the
> crypto password.
>
> That's a pretty complicated paper-path, unless you're familiar with all the
> tools involved (partitioning, cryptsetup, pvcreate/pvmove/vgextend, etc,
> initrd...)
>
> Sean
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: irc.hackingsociety.org port=6667 channel=#hackingsociety
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20120522/e179ba36/attachment.html>
More information about the LUG
mailing list