Today I discovered the manual for dm-crypt partitions of the Gentoo Hardened Project. I saw, that there were some mechanism for setting up dm-crypted devices on boot-time. But I needed a possibility to mount dm-crypted devices via GnuPG. The following patches will makes this possible.
Update
I’v released an updated version which can be found there
Example for /etc/conf.d/cryptfs
mount=crypt-home
source=/dev/vg/home
key=/root/home.key.asc
options='-c aes -s 256 -h plain'
This sets up the volume /dev/vg/home using gpg –decrypt /root/home.key.asc on /dev/mapper/crypt-home
Filed under Gentoo, Kernel, Security & one comment & two trackbacks
Trackback specific URI for this entry
Trackback from WEBLOG (L_Blog)
posted on December 29th 2004, 12:34:56 am Update: Improvement for Gentoo\'s dm-crypt stuffUpdated version