Your mount point may differ as well as your mount options, dump, and pass. Official Ubuntu Documentation Documentation developed and maintained by the Ubuntu Documentation Project. dev/mapper/encsharedev /media/share MOUNTOPTIONS 1 2 To setup your new encrypted volume to auto-mount on boot added the following: to /etc/crypttab:Įncsharedev /dev/rawlargevg/rawsharelv none luks Now, lets modify the chown and chmod settings on the folder: chown USERNAME:USERNAME /media/shareĬongratulations, now you have an encrypted filesystem on /media/share! Run the link you just created, or run the command directly from a root-terminal! Make the mount-directory: mkdir /media/shareĬreate a desktop-link or similar pointing at this command: (use gksudo, or kdesu) - AS ROOT!!! cryptsetup luksOpen /dev/rawlargevg/rawsharelv encsharedev & mount /dev/mapper/encsharedev /media/share Now open the encrypted volume: cryptsetup luksOpen /dev/rawlargevg/rawsharelv encsharedevįormat the volume as ext4: mkfs.ext4 -m 0 /dev/mapper/encsharedev You can use pwgen, to make a random password: (This command creates 200 12-character passwords) pwgen -ync 12 200
#PWGEN UBUNTU DOCUMENTATION INSTALL#
Install the package and run pwgen command. You may not find it in standard distribution repo.
pwgen is more focused on generating passwords that are pronounceable but not a dictionary word or not in plain English.
#PWGEN UBUNTU DOCUMENTATION HOW TO#
Randomize the disk content: (This can take a VERY long time depending on size.) openssl enc -aes-256-ctr -pass pass:"$(dd if=/dev/urandom bs=128 count=1 2>/dev/null | base64)" -nosalt /dev/rawlargevg/rawsharelvĬreate the encrypted volume on top of the random data: (See the next section, on how to create a random password!) cryptsetup -c aes-cbc-essiv:sha256 -y -s 256 luksFormat /dev/rawlargevg/rawsharelv Generate password using pwgen pwgen package comes with repositories like EPEL. Lvcreate -n rawsharelv -l 238418 rawlargevg Some commands to be run: (I'll clean up this section later!) cat /proc/mdstat Install needed packages: aptitude install mdadm gddrescue cryptsetup pwgen lvm2Ĭreate the RAID, specifying the devices to be used: (In this case sda1, sdb1 and sdc1) mdadm /dev/md0 -create -n 3 -l 5 -z 488281250 -c 256 /dev/sd1 * ext4 (you can use ext2 or ext3 as well) This wikipage explains how to setup an encrypted RAID filesystem using these layers: Please refer to EncryptedFilesystems for further documentation.
0 kommentar(er)
