TIP Run cryptsetup from xdm
From Gentoo Linux Wiki
Contents |
[edit] Introduction
One thing which really annoys me is that I have to go to my PC twice during bootup: One time to enter the passphrase for cryptsetup-luks (which protects my /home partition) and another time to enter my login and password.
So I wrote a tool, which allows users to move the mount process into xdm, kdm or gdm.
open X11 server to work.
[edit] Installation
There is no ebuild yet due to a bug in portage, so you will have to install this manually. Sorry for that.
You will need the following packages for this to work:
[edit] Remove old configuration
I assume that you already created an encrypted partition for your /home directory. You will have to remove or comment the old crypt/mount configuration from the init scripts:
| File: /etc/conf.d/cryptfs |
# Remove the following lines: mount=home-crypt source=/dev/hda4 type=luks |
| File: /etc/fstab |
# Remove the following line: /dev/mapper/home-crypt /home #... |
[edit] Install the new tool
Download the tool from this URL. Use the following commands to install it:
| Code: Install |
$ tar xjf gcryptmount-0.1.tar.bz2 $ cd gcryptmount-0.1/ $ make setup |
This will kind of screw up your nice clean system, so you might prefer a manual installation. make setup will do the following:
- Copy gcryptmount to /usr/bin
- Copy the manpage
- Append gcryptmount to your xdm startup script
- Copy the configuration file to /etc
Except for the latter make uninstall will undo those steps.
Edit the configuration file in /etc/gcryptmount.conf to complete the installation.
After the next reboot you should receive a dialog box asking you for your passphrase either after or before logging in.
