Re: ext2 for /boot ???

To: debian-user@lists.debian.org
Subject: Re: ext2 for /boot ???
From: Andrew McGlashan <andrew.mcglashan@affinityvision.com.au>
Date: Sun, 16 Sep 2018 01:52:22 +1000
Message-id: <[🔎] ffad641d-46b7-9378-77e8-cb399ac2e5a1@affinityvision.com.au>
In-reply-to: <[🔎] 2a2a59ac-2704-5a1f-1d8e-ef5f7cd86fc0@plouf.fr.eu.org>
References: <[🔎] 20180911090433.GA12365@tuxteam.de> <[🔎] 20180912091148.GA5538@chew.redmars.org> <[🔎] 87bm93giqx.fsf@turtle.gmx.de> <[🔎] 20180912185040.mfrxkokshrdhg2c5@wren> <[🔎] 20180914040616.3puulbbyvwbxu5ed@eye.freedbms.net> <[🔎] jwvo9d0feb7.fsf-monnier+gmane.linux.debian.user@gnu.org> <[🔎] 21b71f22-b81b-11e8-9b6a-00163eeb5320@msgid.mathom.us> <[🔎] Bebc0KKbGfDkmknpZG_kWBpopEpP_bQJxmtOxws2v0o5-Ld2JGH9GznpN9ZQu13_kUuOw6cMxdAJmezjgIxcMKew2JekXpIC82V0pmE5sHA=@mattcrews.com> <[🔎] ca3cbcd6-a1d4-09d2-aff9-ad389884b3c8@plouf.fr.eu.org> <[🔎] lCK9MWRoxKTvcY-qN_89LgF4efdx7L7W4YiwFhE5aq2AwvWR95_-ztA7jhieunl2Lp0H-TYvMzDC04YeIklIPpT-B7gp-j-5UxwOcOtxzS0=@mattcrews.com> <[🔎] 2a2a59ac-2704-5a1f-1d8e-ef5f7cd86fc0@plouf.fr.eu.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



On 15/09/18 16:48, Pascal Hambourg wrote:
> Le 15/09/2018 à 00:45, Matthew Crews a écrit :
>> On Friday, September 14, 2018 10:58 AM, Pascal Hambourg 
>> <pascal@plouf.fr.eu.org> wrote:
>> 
>>> Actually you can have / including /boot on LUKS with GRUB. It
>>> is just not natively supported by the Debian installer.
>> 
>> Oh really? I might need to look into that. Where can I learn
>> more?
> 
> You must add GRUB_ENABLE_CRYPTODISK=y into /etc/default/grub
> before running grub-install and update-grub/grub-mkconfig. Quote
> from https://www.gnu.org/software/grub/manual/grub/grub.html :
> 
> ‘GRUB_ENABLE_CRYPTODISK’
> 
> If set to ‘y’, grub-mkconfig and grub-install will check for 
> encrypted disks and generate additional commands needed to access
> them during boot. Note that in this case unattended boot is not
> possible because GRUB will wait for passphrase to unlock encrypted
> container.

Interesting, when does grub get dropbear ssh equivalent, so that it
can be headless and have the crypted volume unlocked at boot using ssh?

Cheers
A.
-----BEGIN PGP SIGNATURE-----

iF0EAREIAAYFAludKqoACgkQqBZry7fv4vsUgQD/YVK+GOY5aJg0QhY0ezi57U5P
H8WUvi8rl1FwxGWk8ZEA92KOb9I5BdSNaIEg00zPcLY6CVBjbQ9snUF/52pPWkQ=
=xM38
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: ext2 for /boot ???
  - From: deloptes <deloptes@gmail.com>

References:
- Re: root on ZFS
  - From: <tomas@tuxteam.de>
- Re: ext2 for /boot ???
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: ext2 for /boot ???
  - From: Sven Joachim <svenjoac@gmx.de>
- Re: ext2 for /boot ???
  - From: David Wright <deblis@lionunicorn.co.uk>
- Re: ext2 for /boot ???
  - From: Zenaan Harkness <zenaan@freedbms.net>
- Re: ext2 for /boot ???
  - From: Stefan Monnier <monnier@iro.umontreal.ca>
- Re: ext2 for /boot ???
  - From: Michael Stone <mstone@debian.org>
- Re: ext2 for /boot ???
  - From: Matthew Crews <mailinglists@mattcrews.com>
- Re: ext2 for /boot ???
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>
- Re: ext2 for /boot ???
  - From: Matthew Crews <mailinglists@mattcrews.com>
- Re: ext2 for /boot ???
  - From: Pascal Hambourg <pascal@plouf.fr.eu.org>

Prev by Date: Re: USB media install has wrong partition
Next by Date: Re: USB media install has wrong partition
Previous by thread: Re: ext2 for /boot ???
Next by thread: Re: ext2 for /boot ???
Index(es):
- Date
- Thread