3·
1 day agoBut how to get the OS to recognize it?
My approach for doing this in Gentoo with an encrypted /home is to configure dracut to make a slightly customized initrd.
Thanks to dracut modules, not too much configuration is needed - it prompts on boot for the password to decrypt, and then fstab is just configured to mount the decrypted uuid.
Someone else mentioned using multiple key slots, but I think this is your only real secure option.
Edit: on second thought, you may be able to get this to work in grub simply by adding rd.luks.uuid=xxx as a kernel boot parameter, and then having the decrypted /dev/mapper uuid in fstab for /home
An obviously talented programmer is no longer working on a free project that very few people can meaningfully contribute to - that is a shame.
I can’t even get myself to learn rust, let alone make a GPU driver while reverse engineering blackbox hardware.