unofficial mirror of guix-devel@gnu.org 
 help / color / mirror / code / Atom feed
* Grub disk decryption with key file on another device
@ 2024-12-22 17:31 Vivien Kraus
  0 siblings, 0 replies; only message in thread
From: Vivien Kraus @ 2024-12-22 17:31 UTC (permalink / raw)
  To: guix-devel

Dear Guix,

I have a fully encrypted disk: it has an EFI partition where I install
grub-efi-bootloader and the rest is a single-partition luks device
(including the grub configuration /boot).

I also have another disk that I can partition however I want.

I would like the other disk to store a key file to decrypt the main
disk.

Is this possible?

I see in the manual that grub can be configured to load a CPIO archive
containing the key, but from what I understand, the cpio archive must
be in the root file system, which is encrypted in my case, so it does
not appear to solve the issue. Or can I somehow instruct grub to load
it from another disk?

Best regards,

Vivien


^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2024-12-22 17:32 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-12-22 17:31 Grub disk decryption with key file on another device Vivien Kraus

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).