encrypted root fs
W. Michael Petullo
mike at flyn.org
Mon Aug 16 02:54:01 UTC 2004
> Looking at bugzilla, there's already people trying to do the same thing. Look at
>
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124789
>
> You may want to work with this effort.
Yes, please. I am the author of that patch and I would love to have
some help in this effort!
I have a patch here locally (not yet in bugzilla) that works with mkinitrd
4.0.5 and the new initramfs code. I am working towards allowing folks
to unlock their root disk using a USB-device-hosted key, passphrase or
hexified key.
My patch requires crypsetup 0.2-pre1 for its libcryptsetup (no cryptsetup
binary on the initrd).
In order for this all to be taken seriously I think anaconda needs to be
modified to create an encrypted root at install time. The anaconda folks
have balked at additions in the past because the partition interface is
already quite complicated. So a clever and simple interface would
be necessary.
--
Mike
:wq
More information about the fedora-devel-list
mailing list