Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Get a remote key to open a luks device #95

Open
mickybart opened this issue Dec 5, 2021 · 1 comment
Open

Get a remote key to open a luks device #95

mickybart opened this issue Dec 5, 2021 · 1 comment

Comments

@mickybart
Copy link

When you have multiple computers with root encrypted it can be a pain to provide the password each time (or if you have only one with dual boot).

The main target is to have only one computer/NAS/whatever where keyfiles for others are safely stored.

During the boot, a computer will get its own keyfile by using ssh (dropbear client). Once done, cryptsetup will try to use the keyfile (crypttab).
If we are not able to get the keyfile or if the keyfile doesn't permit to open the device, cryptsetup will follow the regular flow and ask for a passord. (Of course, it is possible to use dropbear or tinyssh provided by systemd-tool)
@mickybart
Copy link
Author

Proposed: #96

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mickybart