[arch-general] Kpartx should be in the repos and archiso for enabling encrypted GPT install
bts at square-r00t.net
Mon Jan 14 03:31:11 UTC 2019
On 1/13/19 10:19 PM, brent s. wrote:
>> Well, unencrypted partition table. What he wants is an encrypted
>> partition table, and more generally no metadata available (so the disk
>> just looks like plain garbage, not x nice labelled partitions with LUKS
also, the LUKS header is still there whether it's on the partition or
the whole disk. you're in no way obligated to reveal that information in
the GPT's partition type with 7FFEC5C9-2D00-49B7-8941-3EA10A5586B7
identifier. linux doesn't care what the partition type is labeled as,
functionally, except to determine auto-raid, unused partitions, and LVM
OP said they're using plain dm-crypt, however, which *doesn't have* LUKS
headers. no matter if it's whole-disk or partition.
the only way you can get around that is with a luksHeaderBackup to a
separate source and then a luksHeaderRestore when you want to use it.
but don't take my word for it.
GPG info: https://square-r00t.net/gpg-info
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 899 bytes
Desc: OpenPGP digital signature
More information about the arch-general