Using USB key as real home and possible encryption?
Walter Dnes
waltdnes-SLHPyeZ9y/tg9hUCZPvPmw at public.gmane.org
Mon Apr 28 19:03:09 UTC 2014
On Sun, Apr 27, 2014 at 10:58:41AM -0400, Giles Orr wrote
> The default encryption for Linux is LUKS. I used that not only for /home/
> on my desktop, but also for my removable backup drives. Ubuntu 12.04 with
> LXDE recognizes the encrypted partitions when they're connected by USB and
> asks for a password to automount them, so this should work fine for what
> you're looking at. I'm no longer using automount - mostly because I
> switched to Openbox, but partly because I'm told automount is totally
> pooched in the newer Ubuntu and Debian installs - I've confirmed with a
> recent Jessie install. I use pmount and have been fairly happy with it. A
> couple friends are trying out udevil.
Now that I know what keywords to search for on Google, I'm starting to
find interesting stuff. E.g. http://sleepyhead.de/howto/?href=cryptpart
shows how to use cryptsetup with and without LUKS.
========================================================================
dm-crypt without LUKS
# cryptsetup -y create sdc1 /dev/sdc1 # or any other partition like /dev/loop0
# dmsetup ls # check it, will display: sdc1 (254, 0)
# mkfs.ext3 /dev/mapper/sdc1 # This is done only the first time!
# mount -t ext3 /dev/mapper/sdc1 /mnt
# umount /mnt/
# cryptsetup remove sdc1 # Detach the encrypted partition
Do exactly the same (without the mkfs part!) to re-attach the partition.
If the password is not correct, the mount command will fail. In this
case simply remove the map sdc1 (cryptsetup remove sdc1) and create it
again.
========================================================================
I did a --pretend emerge of cryptsetup (I'm running Gentoo linux), and
I see that it pulls in lvm2 as a dependancy, presumably to enable the
/dev/mapper/* entries. Any comments on whether I'm better off with or
without LUKS?
--
Walter Dnes <waltdnes-SLHPyeZ9y/tg9hUCZPvPmw at public.gmane.org>
I don't run "desktop environments"; I run useful applications
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list