I'd setup my new notebook letting auto-crypt swap and temp - temp for /tmp and /var/tmp - using /etc/crypttab. So I made into cryptab following:
swap /dev/sda6 /dev/urandom swap,cipher=aes-cbc-essiv:sha256
tmp /dev/sda7 /dev/urandom tmp,cipher=aes-cbc-essiv:sha256
vtmp /dev/sda9 /dev/urandom tmp,cipher=aes-cbc-essiv:sha256
[code]....
How to change the passphrase for crypted partitions in F14?
View 1 Replies View RelatedI like to encrypt my swap and tmp partition with /dev/urandom but it doesn't work. I tried it 100 times and now I have no idea.
Code:
cat /etc/crypttab
swap /dev/sda3 /dev/urandom swap,cipher=aes-cbc-essiv:sha256
cat /etc/fstab
/dev/mapper/swapswapswapdefaults0 0
If I reboot I get the message "/dev/mapper/swap" doesn't exist. It seems, that crypsetup doesn't setting up the encrypted block device. SElinux is in permissive mode.
I would like to encrypt my swap partition ...During installation, I tried to select the "encrypt partition" choice, but it needed a passphrase.After installation, I tried to encrypt my partition ... I followed this article: The problem is that my swap partition always changes its path ...When I first booted the system, it was /dev/sda10, next it became /dev/sdc10, now it is /dev/sdb10. This is probably the reason why in fstab all entries are according to UUID.However, the swap partition is not fond of UUIDs ! I tried to mkswap /dev/<current swap partition> -L Swap, I received a UUID, puted it in /etc/crypttab ... it worked for the first time ... but the second time... did not.
View 14 Replies View RelatedI've got a partition, let's say sdb6, which is one of the partitions of my second hard disk.On boot ubuntu only mount my boot partition, let's say sda2, which is on my first drive.Once ubuntu started if I want to mount a partition I usually click on it under the Places menu and an authorization is required.As I would like to add acl to a partition following this thread
Quote:
http://ubuntuforums.org/showthread.php?p=8787962
I've tried to add acl option to my fstab, but my /etc/fstab doesn't have any info of any of my partitions and it originaly looks like:
Quote:
# /etc/fstab: static file system information.
#
# Use 'blkid -o value -s UUID' to print the universally unique identifier
# for a device; this may be used with UUID= as a more robust way to name[code]...
My goal is to mount/unmount any partition with acl loaded and graphically ,but I reached my limit on my linux knoweledge.
I have an encrypted volume, which contains LVM volume group with volumes. I have unencrypted /boot and the rest is on that encrypted lvm. I have a backup I want to revert to, but that backup has a different kernel, and I don't know how to update the /boot since I have suspicions that the system won't boot if I just restore / . I think I need to run update-initramfs and grub-install at some point..
View 9 Replies View RelatedWell as you can see from my sig I am running Slack 13 and unfortunately did not discover the readme_crypt.txt on the installation cd until it was far too late. Not to worry, many hours burned and things learned.So I compiled and installed cryptsetup and for my test encryption I am using an external usb harddrive (sdb3).First off cryptsetup kept segfaulting with the luksFormat command and this seems to be a know bug. The workaround it to pass USE="dynamic" to config before you build the package. Then
Code:
# cryptsetup.dynamic -h sha512 --verify-passphrase luksFormat /dev/sdb3 test-crypt
# cryptsetup luksOpen /dev/sdb3
[code]....
Is it possible to forbid a non-root to umount a partition that was mounted via fstab-entry?
View 2 Replies View RelatedI am using Locked Lynx 10.04r1 on my
Pentium D 3.0GHz
512 RAM
[URL]
UPR does not access the HDD then from where am I getting Swap 245.3 MB in my System Monitor? Not only that it even uses it.
i started on the "Installation & Upgrades" Forum. So this is basically a repost. I configured an encrypted swap during the installation process of my kubuntu maverick using the manual install CD. I do not use LVM. This worked fine but I made the mistake of assigning a password to the encrypted swap. I would like to change this in favor for a random key. I tried to change /etc/crypttab in the following way:
[code]...
Now the system still asks for a password for sda7_crypt at startup, but does not recognize the old password. It seems that the swap gets a random key and works fine anyway, so I really want to remove only the question for the PW at boot time. This is not a big issue, but it is annoying. When the system is up I can do swapoff and swapon without problems and no password is needed. Directly after boot swap works:
[code]...
Is it better to use:
Code: -c aes-cbc-essiv -y -s 512 Or:
Code: -c aes-xts-plain -y -s 512
I've never encrypted a disk before; I'm following the Arch wiki (I'm a newbie, basically). Should I try and encrypt my swap partition (I've got 512 MB RAM, 1 GB swap)? Ideally, I'd like to make it so it's not feasible for someone (even a very skilled someone) to access my files (and system -- I'm encrypting /), but still make it fairly fast and usable for day-to-day operations. If it matters any, I'm using JFS.
After upgrade from 10.04 to 10.10 I can't mount anymore my crypted disk image.I've an old backup of this image, but when I try to mount it, system give me same errors.
View 2 Replies View RelatedIs there a way to encrypt your swap partition after installation?
View 3 Replies View Relatedmy current plan is to create a truecrypt container with the whirlpool hash. This container will be located on a hdd that is not where my OS will be located (so a separate physical sata drive).My concern is when this container is accessed, that some of the password information could be stored in my swap partition (which is on the main drive where the OS "/" is located)
I would like to have a script or command I could run that after I unmount those drives (or just halt the system) that my swap (and ram too if possible) could be wiped (or like overwritten with the shred command). Also, am I going about this the right way, or should I just use truecrypts FDE on the entire drive? In addition, when Ubuntu does it's default install, does it create a swap file in addition to a swap partition? If it does, would that be another vulnerability? If it is, how do I prevent this from happening?
I welcome any input you have on this. I am aware that once the drive is mounted, it is vulnerable, but I want the data to be secure as possible once my computer is turned off. Also, I have read that there are ram exploits where it holds your passwords for up to a few minutes after you turn the machine off, does anyone know how long that it and is there a way to clear it, or will only time let it fade?
What would be the best way list disk and partitions in the fstab file?
View 1 Replies View RelatedI've had two hd's in my box forever. for more space and backup reasons. Well I have started running the Debian Squeeze distro since December. I've had many issues, some are still unresolved. but now I'm running into major headaches with the fstab. Specifically dealing with/wondering why UUID's are used instead of the old /dev/hd? I was a little annoyed when I tried Kubuntu to find /dev/sd? used instead of /dev/hd? but that was workable. But the UUID's are a nightmare. Here's my problem.
My main box is finally giving up the ghost. The mobo is dying. So in order to do some tests I took my hd bundle (my two hard drives with their cables) physically out of the box and temp installed them in a test box. I wanted to do some benchmark and other tests. I got all kinds of errors. I found that the system wasn't recognizing the UUID's listed in fstab. My concern is when the new mobo gets here next week I won't simply be able to plug the hd's in like I always have been and just let Linux reconfigure itself (Debian used to be good about this). I really don't want to have to clean reinstall if it's not needed.
So for this I have two questions. WHY developers decided to drop using /dev/hd? or even /dev/sd? ?
And is it possible to revert fstab's listings back to the old /dev/hd? settings. In debian fstab had lines commented out showing how each partition was listed in it's /dev/hd? status during install.
I'm getting really sick of all these archane changes in ALL aspects of linux that don't seem to have any good explaination or need.
As part of making a encrypted private folder i told encfs to encrypt swap space on my pc knowing that this would probably break sleep and hibernation. That said i just turned on ubuntu for 5 mins, had to go away for a bit, when i came back to unlock the screen my password was not being accepted, and another 5 mins later the screen said that my session had timed out-i had to do a cold reboot Does this mean i cant lock the screen anymore?
View 7 Replies View RelatedI've apparently changed my fstab file and now my boot drive fails to mount. The original file is still there "fstab.BAK". How do I rename the current fstab to another name and rename the fstab.BAK to fstab? Since this is read only in the /etc directory I have not been able to make this happen from a command prompt.
View 9 Replies View RelatedDoes one need to Check the Swap filesystem, from time to time
View 4 Replies View RelatedLucid on an Acer Travelmate800.Can anyone tell me why I have 0k for swap space? I allocated swap which I can see in my Disk Utility's 'volumes' display.
View 5 Replies View RelatedRAM for older machines like I use is fairly cheap these days. But flash memory is just as cheap or cheaper. So I'd like to ask about the feasibility of expanding my system's memory using flash memory. And about whether creating a partition for swap on the flash memory, or whether a swap file on the flash device, is the better way to go.
By flash memory I have in mind mainly USB sticks or what are sometimes called "pen drives." But I do also have CF and SD cards that, with the proper cheap adapter (one of which I already own for adapting CF) could be used to create extra swap space. So, what is the current consensus on the feasibility/advisability of using flash memory for swap? I've read about the limited write cycles of flash being an argument against using it for swap. But recent reading indicates to me that the limited write cycles problem applies mostly to older, smaller-capacity flash memory. Some will come out and say that, for larger-capacity flash memory, the life of the device is likely to exceed the amount of time your current computer will be useful (I think I've seen estimates in the range of 3-4 years life--minimum--for newer, higher-capacity flash memory).
A more persuasive argument I've heard against using flash memory for swap is that access times for these devices can be much slower than SATA, and maybe even IDE, hard drives. That would certainly dictate against using flash memory for swap.
So, how about some input on this issue? Anyone using flash memory for swap? If so, what kind (e.g., usb stick or SD/CF)? Are you using a swap file or a swap partition? How's system performance? Likewise, has anyone had flash-memory-used-as-swap die on them? The consequences would undoubtedly be dire. Also, has anyone measured flash memory access times to confirm or refute claims about slow access times? Are some types of flash memory better/worse than others in terms of access times?
I know it's possible, but does anyone have a URL or tutorial on how to do this?
View 3 Replies View RelatedI remember automounting my windows drive (I dualboot windows and fedora) using /etc/fstab.
Now I can't find what to add to the file in order to mount my drive.
The drive is /dev/sda2 and I would like to mount it at /mount/windows, it's an NTFS drive.
I have been looking around the forums and reading the manuals but can't figure it out
I really need some help here, this is driving me mad. I edited my fstab file to boot a partition on start up, only instead of typing sda7 I typed sda1 by mistake and now can't boot.
The problem that is driving me mad is I cannot save changes to fstab from a live cd because I do not have root permissions.
I am relatively new to Linux and have no idea how to use the fedora install disk or the commands to use or if it will let me save changes to the file.
I cannot believe something so easy to fix does not appear to be possible because i can't save changes to the fstab on my fedora install.
I can access the files I need by using the telnet command, but I need to have access to the files in my local file system. Is it possible to mount a shared drive over telnet in the fstab file?
View 8 Replies View RelatedI've edited /etc/fstab to auto-mount two partitions on a new disk drive that have been formatted as ext3, by appending the following two lines:
/dev/sdb1 /bak1 ext3 defaults 1 1
/dev/sdb2 /bak2 ext3 defaults 1 1
On reboot, the system complains there is some problem (I can't advise what the problem is, because the display scrolls up too fast to read!), and I'm left with a root command prompt.
Its a /etc/fstab problem, presumably. I've used vi to edit /etc/fstab to remove the two lines mentioned above, but on quit and save, I'm told I have a read-only file system!
1. How can I mount a read-write file system so I can edit /etc/fstab?
2. What's wrong with my two new entries in /etc/fstab? After formatting /dev/sdb1 and /dev/sdb2, I checked the they were mountable with # mount /dev/sdbn /bakn (n = 1, 2) before editing fstab.
We have a Fedora11 installation that we Ghosted (Norton Ghost) to a bigger Hard Disk because the old one was failing
I know there is an extra step for linux where you fix fstab because it points to all the wrong locations, could someone walk me through this or link me to somewhere that can walk me through it?
Do I need to do this editing from a Fedora 11 Live CD (as its gone missing) or will a Fedora 13 CD do the trick?
I used the usual 'mkfs.xfs -l size=128m,lazy-count=1 /dev/sdX' at creation. After that, I would like to use custom mount options like: This goes instead of the "defaults" part in /etc/fstab
noatime,nobarrier,logbsize=256k,logbufs=8,biosize=16
I receive the following error at boot: INVALID log iosize 4 [not 12-30] << No one used iosize 4... what does it mean? it is connected to the options..but which one? (At the minute I'm usig it with: noatime,nobarrier).
I added an sshfs entry fto /etc/fstab in a fresh FC15 build ona laptop and this seems to work
sshfs#user@server:/opt/apache-tomcat-7.0.2/webapps/ /mnt/server/opt/apache-tomcat-7.0.2/webapps/ fuse uid=500,gid=500,allow_other 0 0
I can mount and umount /mnt/server/opt/apache-tomcat-7.0.2/webapps/ without problems.
But after a reboot the systme it hangs when loading, I can't copy paste the messages but it said something about boot dependencies, and it was apparent the error was loading fstab. I had to Ctrl D or enter root password to get a recovery system, after commenting out the sshfs line (and some nfs lines too) from /etc/fstab after another reboot I was in.
sshfs used to be permitted in /etc/fstab it seems , I've not used it before, could this be a FC15 issue? I have seen other threads about FC15 and nfs boot issues presumably to do with the new booting mechanism.
I have been trying to work out how to set up Fedora 15 to automatically mount an NFS share at boot time. I can mount the share interactively using 'mount -t nfs server:/usr/local /usr/local'. When I put the entry in /etc/fstab, it stops the machine booting. It tries to give me a shell ('Enter root password for shell or press Control-D to exit') or something close to that. However, I cannot enter the maintenance mode, it hangs. Same thing with pressing control-D, it hangs and doesn't get any further.
I rescued the system by booting off a CD, mounting root, and removing the nfs entry from fstab. After that it booted fine. The entry I had in the fstab is: nfsserver:usr/local /usr/localnfsro,hard,bg,intr,comment=systemd.automount0 0
I put the 'comment=systemd.automount' entry in because of some related searches I did in forums.
