Replies: 1 comment
-
|
I added this to the README, thanks! |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
First of all, thanks for the great guide! I successfully followed it and now have an encrypted ZFS RAID1 boot volume, including a working dropbear configuration.
One thing that is a bit inconvenient, however, is the fact that you need to enter your LUKS passphrase individually for each disk, even if the passphrase is identical among the disks. I found a guide on Stackexchange that shows how to use the
decrypt_keyctlscript in/etc/crypttabto only ask for the passphrase once (https://unix.stackexchange.com/a/392286).The keyutils package came pre-installed on my Proxmox installation. Setting the
keyscript=decrypt_keyctloption in/etc/crypttab, together with an identifier in the keyfile field, followed byupdate-initramfs -u -k all, did indeed have the desired effect of only having a single password prompt.Let me know if you would consider accepting a PR that adds the above steps to your guide.
Beta Was this translation helpful? Give feedback.
All reactions