Re: Boot better have mounted on root or /boot ?

To: debian-user@lists.debian.org
Subject: Re: Boot better have mounted on root or /boot ?
From: Sven Hartge <sven@svenhartge.de>
Date: Thu, 8 Apr 2021 13:27:37 +0200
Message-id: <[🔎] 8h5pe453g00lv8@mids.svenhartge.de>
References: <[🔎] 398ca0e2-5c0c-445b-7a16-772b4e62d168@gmail.com> <[🔎] YG50tEf2g53ssCOR@wooledge.org>

Greg Wooledge <greg@wooledge.org> wrote:
> On Thu, Apr 08, 2021 at 08:55:47AM +0800, Robbi Nespu wrote:

>> Filesystem      Size  Used Avail Use% Mounted on
>> /dev/sda1       110G   62G   43G  60% /
>> 
>> What actually the best way for boot directory? put on same root directory
>> like I have right now or it better to have it own partition?

> The only time you *need* to make it a separate partition is when
> you're doing certain flavors of disk encryption.  Under those setups,
> you need an unencrypted /boot so you can boot and mount your encrypted
> root file system.

Not even when doing FDE. GRUB2 is able to decipher LUKSv1 volumes.

But, given that LUKSv1 has been superceded by the newer v2 format, I
would still create a separate /boot, so only it needs to be encrypted
using the potential weaker LUKSv1 format while the rest of the system
can be on a LUKv2 volume.

https://cryptsetup-team.pages.debian.net/cryptsetup/encrypted-boot.html

S°

-- 
Sigmentation fault. Core dumped.

Reply to:

References:
- Boot better have mounted on root or /boot ?
  - From: Robbi Nespu <robbinespu@gmail.com>
- Re: Boot better have mounted on root or /boot ?
  - From: Greg Wooledge <greg@wooledge.org>

Prev by Date: Re: Boot better have mounted on root or /boot ?
Next by Date: Re: .profile not being src'd at login on uptodate buster
Previous by thread: Re: Boot better have mounted on root or /boot ?
Next by thread: Re: Boot better have mounted on root or /boot ?
Index(es):
- Date
- Thread