On 2023-03-11 12:57:56 -0500 (-0500), Timothy M Butterworth wrote: [...] > The reason you can not use Login/Password as the LUKS passphrase > is because The Passphrase can not be different for different > users. The passphrase is not simply a password but instead it is > part of the key material used to decrypt and encrypt. Not that I'm a fan of the proposed use case, but see the manpage for cryptsetup-luksAddKey(8): "Adds a keyslot protected by a new passphrase." So while there is only one passphrase for a key, a device can be accessed by an arbitrary number of keys. -- Jeremy Stanley
Attachment:
signature.asc
Description: PGP signature