Delayed encrypted partition mount
gilboad at gmail.com
Mon Mar 21 14:22:59 UTC 2011
I routinely encrypt all important partitions on my laptops /
workstations / servers using LUKS both at home and at work.
However, due to the above, I can no longer remotely reboot the machines
(at least the ones that doesn't have a serial console attached) as I'm
required to baby-sit the machine until the password prompt appears.
My question is simple: Given the fact that I rarely encrypt the root,
can I somehow delay the encrypted partition mount to right-before-gdm,
so all the essential services (samba, nfs, cups) - especially network
and sshd, will be up, so I can remotely type the password required to
mount the encrypted partitions?
I could delete the entries from /etc/cryptab, create a service that will
mount the partitions late in the boot process, but AFAIK, this will not
display the graphical password prompt making it less than ideal...
More information about the devel