linux:encrypted_home
Differences
This shows you the differences between two versions of the page.
Previous revision | |||
— | linux:encrypted_home [2023/11/24 21:55] (current) – external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | # Switch to an encrypted home partition | ||
+ | <note warning> | ||
+ | As root: | ||
+ | |||
+ | umount /home | ||
+ | blkid | ||
+ | # Get the /dev/sdXY associated to your /home, in my case /dev/sda6 | ||
+ | # Make some noise, erase everything on /home | ||
+ | badblocks -c 10240 -s -w -t random -v /dev/sda6 | ||
+ | # Encrypt the partition | ||
+ | cryptsetup -c aes-xts-plain -y -s 512 luksFormat /dev/sda6 | ||
+ | # Enter a Master key | ||
+ | cryptsetup luksAddKey /dev/sda6 | ||
+ | # Enter your user's password | ||
+ | # Unlock the partition | ||
+ | cryptsetup luksOpen /dev/sda6 home | ||
+ | # Enter a key, doesn' | ||
+ | # Re-create the filesystem | ||
+ | mkfs.ext4 / | ||
+ | | ||
+ | aptitude install libpam-mount | ||
+ | | ||
+ | Edit the file / | ||
+ | | ||
+ | <volume fstype=" | ||
+ | | ||
+ | Edit the file /etc/fstab, comment the line for /home | ||
+ | | ||
+ | | ||
+ | |