Fedora :: Access /etc/modprobe.d On An Encrypted LVM LUKS Partition?

Nov 8, 2009

I need to access /etc/modprobe.d on an encrypted LVM LUKS partition. I m not sure how to go about it though. Mount usually handles my mounting needs, do I need to decrypt the physical volume first? LIst of commands need would make my day.

View 1 Replies


ADVERTISEMENT

Fedora :: 13 - Disable LUKS-encrypted Partition From Automount?

Aug 30, 2010

I have encrypted a partition while installing Fedora 13, and I need to disable its automount - I will mount those manually.

But even though I commented out the corresponding line in /etc/fstab, I am still asked for the passphrase for the partition at startup.

How to completely disable this behaviour - and how to mount the partition manually afterwards?

View 5 Replies View Related

Fedora Security :: Unlock A LUKS Encrypted Root Partition Via Ssh?

May 20, 2010

Anyone had any experience with unlocking a LUKS encrypted root partition via ssh? It is ok to leave /boot unencrypted.

There are a few pages from google with the debians variants, archived by putting dropbear into initrd.

I like to do that with my fedora/centos remote servers, but struggle to find any resources specific to it. Anyone has any suggestions and thoughts as to what might be a suitable way forward?

View 2 Replies View Related

Fedora Security :: Image An Entire Luks System Encrypted Volume And The Rest Of The Used HDD, The MBR And /boot Partition?

Jan 21, 2009

I need a FREE solution that can image an entire Luks system encrypted volume and the rest of the used HDD, the MBR and /boot partition. Note: MBR and /boot are not encrypted. Note 2: I want to be able to restore entire drive from image with only a couple of steps. Note 3: Destination HDD space is a factor. Image file must be compressed and the image file must be around 40 to 50 GB or less. The smaller the image the better.

I have used clonezilla live cd before but not for encrypted volumes. I know you can install it in Linux. But, I don't know how to configure it after installation. I would be very happy if someone could tell me how to configure clonezilla in Fedora. How to guides are also welcome. I have one more question. If I image the encrypted volumes and all the stuff I mentioned above while logged in to Fedora, and I restore the drive from the image, will the recovered drive still be encrypted?

View 8 Replies View Related

Software :: Corrupted LUKS-encrypted Partition ?

Jun 30, 2010

I have a really tricky and may be intresting problem with a encrypted disk partition (cryptsetup luks...) which was fine until it accidentally got re-formatted by an instance of Windows 7. Most of the data on that 1TB-disk will probably still exist, only the LUKS header at the very beginning of the partition is - of course - gone.

So when I try to open the container, it gives no verbose, just the return value 234.

I scanned the whole partition for other LUKS headers with hexedit, none there. But, luckyly I have another partition which is encrypted in the exact same way with the exact same passphrase (which I remember very well!), so I had an idea: I copied the LUKS header (592 bytes) from the other LUKS encrypted partition over to the damaged partition.
When I now issue

Code:

Code:
No key available with this passphrase

Here is the command how I created the container:

Code:

How do I get the existing passphrase accepted by LUKS?

View 9 Replies View Related

Debian :: Mount Encrypted LUKS Partition (On Former System HDD)

Feb 1, 2016

I have two basically identical harddrives that are encrypted with LUKS containing a complete debian installation:

Code: Select allroot@x200s:/home/b# lsblk --fs
NAME                   FSTYPE      LABEL UUID                                   MOUNTPOINT
sda                                                                             
├─sda1                 ext2              0b851969-281e-4db2-8a5b-3798e801711b   /boot
├─sda2                                                                         
└─sda5                 crypto_LUKS       cfcf63ef-448a-4f72-9f58-8f7731cf3dfc   
  └─sda5_crypt         LVM2_member       21CS3f-SQeQ-XcMr-kyDs-OPtR-egmT-HkvJAu

[Code] ....

sda is what I currently run to write this text, sdb is my former harddrive, connected via USB.

I want to access the root partition on sdb.

The problem is:

Code: Select allcryptsetup luksOpen /dev/sdb5 oldhd
Enter passphrase for /dev/sdb5:
root@x200s:/home/b# ls /dev/mapper/
control  oldhd   sda5_crypt  x200s--vg-root  x200s--vg-swap_1
root@x200s:/home/b# mount /dev/mapper/oldhd /mnt/
[b]mount: unknown filesystem type 'LVM2_member'[/b]

[Code] ..

Before all this, both sda and sdb where in the same volume group. I renamed the volume group of sdb to "oldDisk"
using

Code: Select allvgrename <UUID> oldDisk

How I can access the data on the root filesystem of my sdb..

View 2 Replies View Related

General :: Moving A LVM/LUKS Encrypted Partition To The End Of A Harddrive?

May 16, 2011

I need to move a LUKS encrypted partition to the end of a harddrive to expand another partition. Does anyone know how to do this?

Is it possible to do this with other partition editing programs?

Gparted doesnt support LUKS/LVM

View 1 Replies View Related

OpenSUSE Install :: Can't Longer Access LUKS Encrypted Volumes?

Aug 26, 2011

I've had everything but /boot on LVM LUKS encryption since I installed 11.4 on my netbook. Suddenly it won't accept my password and boot. Nothing had been updated since the last successful boot. The only possibly different thing that occurred was that I had plugged in my Android phone to charge before it booted up. Anyway, the specific error it gives when I enter the password (and I'm absolutely sure it's the correct password):

Code:
No key available with this passphrase.
Here is everything else on the screen:
Code:
doing fast boot
Creating device nodes with udev
[number (not sure if relevant/unique)] fb:conflicting fb hw usage inteldrmfb vs VESA VGA - removing gen
Volume group "system" not found

[Code]...

View 9 Replies View Related

Ubuntu Security :: LUKS - Dm-crypt And Encrypted Partition At Boot

Feb 22, 2010

I'm trying to have a LUKS encrypted partition mounted at startup and to have GDM ask for my key so it will decrypt. Now I followed [URL] to the letter. Except for now, I have it just mounted into /mnt/cryptohome so I'm not messing with my system. My problem is the one everyone mentions in the comments, ubuntu isn't asking for the LUKS key in the X display, it's asking in the first terminal (Ctrl-Alt-F1). This will not do. I need it to ask to mount my drive before I'm even asked to login, so eventually I can encrypt my /home.

View 9 Replies View Related

Ubuntu :: Auto-mount Luks Encrypted Partition At Boot?

May 27, 2010

I'm having a problem auto-mounting a new luks partition. I have crypttab and fstab entries. I already have my primary encrypted partition (root) mounting at boot (from the install), but after creating this one manually, it does not open on boot. It auto-mounts when I run the following command manually after boot: sudo luksOpen /dev/disk/by-uuid/<uuid> mycrypt

/etc/crypttab entry:
personalcrypt /dev/disk/by-uuid/a1af5b7b-db58-4690-b586-b74407795e2c none luks
/etc/fstab entry:

[code]...

View 1 Replies View Related

Fedora Security :: LUKS Encrypted Partion And Start Up

Aug 18, 2010

I run fedora 13 on my laptop (dual boot with Windows 7) and I just created a new partion to hold sensible data, encrypted with LUKS. I followed this tutorial for creating it.Now, everything went well and the new partition works well. But I needed something a little different from what the tutorial suggested, because I don't want the partition to be mounted on the system each time it boots, but I would (unlock and) mount it manually when I need it.

To do so I just didn't follow the Tutorial steps from 7 to 13, thinking that without the changes to crypttab and fstab the partition wouldn't be even touched by the start up process. And that's partially true: the partition isn't mapped nor mounted in the system when I boot, but the problem is that it however keeps asking for the passphrase to unlock it even if it doesn't get mounted or mapped.It just asks for it before the system loads all it's parts (udev, filesystems, etc) and I can't understand why, what it uses it for if it doesn't unlock it.So my question is: why does it ask for the passphrase to unlock luks if I haven't set crypttab and fstab to mount the partition on start up?

View 2 Replies View Related

Red Hat / Fedora :: Automount LUKS Encrypted NTFS USB Disk In RHEL 5.3

Dec 23, 2009

I have an external 300GB (Toshiba) disk which I encrypted (using cryptsetup luksFormat) and then installed an NTFS filesystem on (need to be able to use it in both Linux and Windows - using FreeOTFE). The disk mounts fine in windows and on my Fedora 10 system it automounts.

I can manually mount it on the RHEL5.3 system, and gnome-mount gets as far as recognising that it is encrypted and asking for the key, but it doesn't then mount it - I then have to manually mount the /dev/mapper/luks... device.

Does anyone know how to do this - if it works in Fedora 10 it ought to be possible to get it to work in EL5.3 I'd have thought.

View 4 Replies View Related

Fedora Installation :: 15 - LUKS Encrypted Logical Volumes Not Mounting On Boot

May 26, 2011

I have a setup that looks like this

[Code]....

and I'm dumped into recovery mode. However, if I remove these mounts from /etc/fstab via comments, I can wait for the system to boot (which it does very quickly) then mount the mapper devices myself. So what is going on? Has something changed wrt logical volumes, or is this just systemd? I can live with manual mounting, but any advice on resolving the automatic mounting situation would be great.

[Code]....

View 2 Replies View Related

OpenSUSE Install :: Encrypted LVM Volume - Modprobe Fatal Error

Mar 17, 2011

I recently got a eSata docking station for hard drives and after deciding to make those volumes encrypted LVM's, I created my first logical volume. After setting it up in yast2 and rebooting I received a prompt for the lvm password, gave it and received:

Mar 17 13:38:21 blkdragon kernel: [ 1105.172687] padlock: VIA PadLock not detected.
Mar 17 13:38:21 blkdragon kernel: [ 1105.313056] alg: No test for stdrng (krng)
Mar 17 13:38:21 blkdragon kernel: [ 1105.323189] alg: No test for stdrng (ansi_cprng)
Mar 17 13:38:22 blkdragon kernel: [ 1105.416892] padlock: VIA PadLock Hash Engine not detected.
Mar 17 13:38:22 blkdragon modprobe: FATAL: Error inserting padlock_sha (/lib/modules/2.6.31.14-0.6-desktop/kernel/drivers/crypto/padlock-sha.ko): No such device

Boot resumed and I looked for the reason for this, the padlock-sha.ko module does exist in the appropiate place and the volume was mounted in spite of the error message. Lvmdump seems to indicate that the volume is, in fact, encrypted. My thoughts at the moment are that the volume was encrypted by aes, so the padlock-sha.ko was not necessary to mount the volume. Backtracking the message log the same error happened during the creation of the volume before rebooting. The kernel version gives it away but it's a 11.2 machine.

View 3 Replies View Related

Debian Configuration :: Give Grub Access To Encrypted Partition

Apr 30, 2011

My partitions are set up as follows:

[code]...

I installed Ubuntu successfully using rescue mode on the alternate cd, and let Ubuntu use an internal boot and home. At the final stage grub refused to install to the MBR, and then refused to install to my /boot partition on /dev/sda2. It said: No boot loader has been installed, either because you chose not to or because your specific architecture doesn't support a boot loader yet. You will need to boot manually with the /vmlinuz kernel on partition /dev/mapper/volumegroup-natty and root=/dev/mapper/volumegroup-natty passed as a kernel argument. Returning to debian, I did a update-grub, which detects Windows and Ubuntu:

[code]...

How do I make grub decrypt the LUKS partition before attempting to load the Ubuntu kernel?

View 3 Replies View Related

OpenSUSE :: Keyfile For Encrypted Drive (luks)?

Oct 18, 2010

I can't seem to get an encrypted partition to recognize a keyfile. It is a backup partition that I would like to keep unmounted until a cron-script runs once a week to backup my sensitive data. In order for the script to run without my assistance, I thought I'd use a keyfile to authorize the mount.

So far I've created a keyfile and have added it to the partition using "luksKeyAdd". It didn't really say it was successful, but when I do a luksdump, it shows that another key slot has been enabled, so I believe it worked. After that I created a /etc/crypttab file with the following:

Code:
backup_sdd1 /dev/sdd1 /root/backup luks
/dev/sdd1 being the backup partition, and /root/backup being the keyfile

After rebooting, I am still prompted for a password when trying to mount the encrypted partition (sdd1), and there is no device "/dev/mapper/backup_sdd1" created like I believe there should be. I haven't added any entries to fstab, as I don't want this partition to mount at boot.

View 5 Replies View Related

Slackware :: 12.2 - RAID-1 - LVM - LUKS Encrypted Root

Dec 17, 2008

I am trying to get Slackware 12.2 running on a system with two identical harddiscs using RAID-1, LVM and LUKS.

Here is what I get:

Code:

The system is still the same, however, the results of upgrading or installing 12.2 are different. The system refuses to boot. The screen messages during boot seem to suggest, that the RAID system is "seen" by the system, but the encrypted filesystem is not.

I can boot with the installation DVD, however, and

Code:

View 14 Replies View Related

OpenSUSE Install :: Can't Access Encrypted Partition With The YaST Practitioner Tool

Feb 13, 2010

I encrypted my home partition with the YaST Partitioner tool, but now I can't access it anymore. After I encrypted it I rebooted the machine and thought that it would prompt me a password field to access the partition, but now I can't access it at all. I tried "mount -t ext4 /dev/sda7 /home" which gives me that error after I entered the password: "mount: wrong fs type, bad option, bad superblock on /dev/sda7, missing codepage or helper program, or other error In some cases useful info is found in syslog - try dmesg | tail or so"

The info I get from "dmesg | tail" is: "EXT4-fs (sda7): VFS: Can't find ext4 filesystem" Before I encrypted it I converted the /home partition from ext3 to ext4 without any problems and it worked properly. After playing around with it I also discovered that /dev/sda7 got wiped out of /etc/fstab, but I entered it again.

View 9 Replies View Related

Debian Configuration :: Creating LUKS Encrypted USB Disk

Jan 15, 2016

Is it better to install LUKS to raw disk (/dev/sdb) or disk partition (/dev/sdb1)? What are best LUKS options?

"cryptsetup benchmark" output
Code: Select allPBKDF2-sha1      1310720 iterations per second
PBKDF2-sha256     862315 iterations per second
PBKDF2-sha512     590414 iterations per second

[Code] ....

Is slow hash better or how to choose it? It is clear that aes-xts is best choise. Is 265 bit key good?

View 3 Replies View Related

OpenSUSE Install :: Encrypted LVM LUKS And Login Screen

Apr 2, 2011

I recently installed OpenSUSE 11.4 64 bit with GNOME yesterday and everything is going fantastic. I like it much better than Ubuntu 10.10 64 bit Maverick Meerkat because it is much more stable, reliable, and dependable. I own a heavily modified ASUS N61JV-X2 notebook PC. I installed OpenSUSE using the LVM based method and LUKS encryption. When I turn on the power to my notebook PC, it asks me for my password to decrypt my Intel 2nd Generation 160.00 GB Solid State Drive. I expected this behavior. However, I never get to see the OpenSUSE login screen. After I type in my password to decrypt my SSD, it loads up the desktop immediately. How do I configure my OpenSUSE so that I can see the login screen so that I can select my standard user profile and enter the user password to login?

View 9 Replies View Related

Ubuntu Security :: Aes-xts - Aes-lrw - Aes-cbc - Set Up Encrypted Volumes With Dm_crypt And LUKS?

Jan 3, 2010

I'm just wondering - what is the best way to set up your encrypted volumes with dm_crypt and LUKS?

My understanding was that aes-lrw ws better than aes-cbc - and then I stumble upon [url] which says that LRW has some problems, and XTS is better? I dont know enough about encryption theory to be able to say anything, so i'm hoping some folks more enlightened will be able to say something here.

I was previously using aes-lrw-benbi to set up a volume. If xts is truly better - should i be using '-c aes-xts-benbi' then?

View 4 Replies View Related

Software :: Cannot Write To LUKS Encrypted Hard Drive

Apr 3, 2011

I am running Fedora 14 with the Gnome desktop and I have a 1 TB external hard drive that is msdos with approximately 200 gbs of data on it. I can unlock it and even read and copy files to my internal hard drive but I cannot add files to it, I use to be able to. I didn;t think i changed permissions.

View 3 Replies View Related

SUSE / Novell :: Encrypted Root With LUKS On LVM And RAID-1 ?

Apr 15, 2009

OpenSuSE 11.1 is by far the best SuSE version in a long time. It's generally up to competition or ahead of it. It's admirable, how thoughtful this system is set up, and how clean and fast it is compared to its predecessors. It ssems, that SuSE is fighting its way back to where they came from before the Novell "merger."

Having said that, it is even harder to understand, IMHO, why the installer doesn't support encrypted root partitions. Of course, there is a manual solution:

http://en.opensuse.org/Encrypted_Roo...ith_SUSE_HOWTO

However, this HOW-TO doesn't explain how to combine LUKS encryption with LVM on a RAID-1 system, as described for Slackware 12.2 here:

[url]
[url]

Is there a similar guide anywhere available for OpenSuSE 11.1?

If not: Would it be possible to do all the low-level setup work, like partitioning, setting up the logical volumes and encrypting everything, with Slackware, following the document above, and then install OpenSuSE 11.1 on that system? Would that work?

View 5 Replies View Related

Fedora Security :: LUKS Encryption At Partition Level Or LVM?

Jul 19, 2010

I'm planning a fresh F13 install, with separate partitions for /boot, /home, /tmp, /, and swap. All but /boot will be logical volumes, and I'd like to encrypt all but boot. If I encrypt the underlying partitions, is there any reason to also encrypt the logical volumes themselves?

my system will be:
HP dv6-3040us Pavillion laptop
AMD Phenon II
4GB DDR3

View 3 Replies View Related

Slackware :: Automount LUKS Encrypted USB Disk As Regular User

Oct 29, 2009

How can I get a LUKS encrypted partition on an external USB device automounted with r/w access for non-privileged users?

Background:
I just reformatted an external USB device with ext4. The only partition is LUKS encrypted. Now, when I plug the device to my computer, KDE notifies me and asks me to enter the LUKS passphrase. Then it mounts the device. Little snag here: Non-privileged users have read-only access.

My user is a member of group plugdev, but not of group disk, as this was discouraged several times, e. g. by Robby Workman. With non-encrypted disks regular users have read/write access, or can change the filemodes accordingly, as far as I recall (currently I have no more non-encrypted disks left to verify it...)

View 11 Replies View Related

Slackware :: Shrink A LUKS-encrypted Physical Volume - LVM2

Dec 28, 2009

I have a 160GB harddrive with 2 partitions:

1. /dev/sda1 ext2 100MB (this is my /boot partition)

2. /dev/sda2 LVM2 Remaining space (this is my physical volume and is LUKS-encrypted)

There is 1 volume group, slackvg, and 3 logical volumes:

1. swap 2GB

2. root jfs 10GB

3. home jfs 50GB

I would like to shrink /dev/sda2 to make room for another regular partition, is this possible?

View 1 Replies View Related

Ubuntu :: Change Splash Screen On An Encrypted Drive (cryptpo LUKS)?

Jan 22, 2011

I am trying to change the splash screen (Lucid 10.4) on an encrypted drive (cryptpo LUKS)

I've used to gimp to modify the png files in /lib/plymouth/themes/ubuntu-logo (both ubuntu_logo.png and ubuntu_logo16.pgn).

These changes show up when the machine is shutting down, but not when it boots (I get the same Ubuntu splash screen that allows me to enter the encryption password). I'm guessing because I'm using an encrypted drive that the plymouth theme and images are stored in an encrypted partition ....maybe /dev/sda1?

Could someone confirm this, or suggest how to change the splash screen for 10.4 if using drive encryption?

View 1 Replies View Related

General :: Format Master LUKS Partition With/without Damaging Other Partition?

May 11, 2010

I need to change my LUKS partition to NTFS as I do not need the boot partition any longer, but I need to keep sdb3 (truecrypted ext3) intact. This is how the disk looks now:

Code:

Disk /dev/sdb: 1000.2 GB, 1000204886016 bytes
255 heads, 63 sectors/track, 121601 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes

[code]....

View 2 Replies View Related

Fedora :: Recovering An Encrypted Partition?

Apr 8, 2010

I have been using fedora 12 for last 6 months, recently I bought an external USB hard drive of 320 GB capacity. I made 2 partitions using the Disk Utility in Fedora. I encrypted the first partition as it was supposed to hold a lot of sensitive data, and yes it did have. Now I had to change my OS to AV linux for some audio-video editing work which wasnt being done properly on fedora due to some issue beyond my knowledge. now the problem is my encrypted partition is not accessible in my new installation. I see an empty space on my /dev/sda1. although no change to partition data has been done and the data on the second partition /dev/sda2 is easily accessible. when putting the drive on automount, is does not ask me for the password and neither does it show me the data. I have tried fdisk and sme other utilities but have failed to get my drive unencrypted.

View 7 Replies View Related

Fedora :: Cannot Mount Encrypted Partition?

Apr 11, 2011

I used Ubuntu for years now, but since the latest decisions got public I deceided to try something new: Fedora. I installed the system as a dualboot,Ubuntu and my old data. Because Fedora got installed inbetween of two partitions,ad to do the partitioning manually. I just made one partition /dev/sda4. During the installation process I got asked about the password for my /dev/sda1 partition. Of course, I entered it. So far so good.Now, everytime when I boot, the boot process stops and asks me for the password of the /dev/sda1 partition. However, the boot process does not go on, unless i press STRG+C.After the log in, I can also not access my data, by entering the password (GUI).The only way I can acces the data on that partition is:

Code:
su -
cryptsetup luksOpen /dev/DEVICENAME luks-fedora

[code]...

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved