18

I have installed an Ubuntu machine with two encrypted LUKS partitions: one for / and one for /home.

I've reinstalled the machine to upgrade to 10.04. Again, the / is installed using LUKS, and I'm able to mount the /home using:

mkdir /media/home
sudo cryptsetup luksOpen /dev/sda2 home
sudo mount -t ext3 /dev/mapper/home /media/home

The problem is, this cryptfs mapper disappears after boot, so I putting the appropriate line in fstab fails.

How do I set the cryptfs to prompt for password and unlock the drive at boot?

Thanks,

Adam

Adam Matan
  • 12,519

2 Answers2

17

Seems that I needed to edit the /etc/crypttab file, which is the crypto equivalent to fstab, and add the following line:

# create a /dev/mapper device for the encrypted drive
home    /dev/sda2       none luks

And add the following to /etc/fstab:

# /home LUKS
/dev/mapper/home /home ext4 rw 0 0

Now I get two password prompts at boot, as needed.

Adam Matan
  • 12,519
-3

I had the same problem!! However, everything is taken care of after this command! You should try it out :-)

sudo update-initramfs -u -k all
Tim
  • 13
  • 6
    Care to explain what that command does? – Flimm Nov 10 '11 at 23:42
  • 1
    @Flimm , the command re-create your ramdisk , for all the kernel installed. You might configured crypttab , but this needs to be copied into your ramdisk , if you use a crypted root – daisy Apr 25 '12 at 12:00
  • 2
    This answer should include an in-depth explanation, it is not clear that it relates to the question at all. – Langston Jul 28 '15 at 03:37