* Grub disk decryption with key file on another device
@ 2024-12-22 17:31 Vivien Kraus
0 siblings, 0 replies; only message in thread
From: Vivien Kraus @ 2024-12-22 17:31 UTC (permalink / raw)
To: guix-devel
Dear Guix,
I have a fully encrypted disk: it has an EFI partition where I install
grub-efi-bootloader and the rest is a single-partition luks device
(including the grub configuration /boot).
I also have another disk that I can partition however I want.
I would like the other disk to store a key file to decrypt the main
disk.
Is this possible?
I see in the manual that grub can be configured to load a CPIO archive
containing the key, but from what I understand, the cpio archive must
be in the root file system, which is encrypted in my case, so it does
not appear to solve the issue. Or can I somehow instruct grub to load
it from another disk?
Best regards,
Vivien
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2024-12-22 17:32 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-12-22 17:31 Grub disk decryption with key file on another device Vivien Kraus
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).