1 |
On Wed, 30 Dec 2015 07:34:52 +1000 |
2 |
Hans <linux@××××××××××××××.au> wrote: |
3 |
|
4 |
> Is it possible to fully encrypt a Gentoo system as can be done with |
5 |
> Fedora, Suse, Arch Linux, Debian and Ubunto without using a unencrypted |
6 |
> USB boot stick or unencrypted /boot partition? |
7 |
> |
8 |
> If yes, where can I find instructions that really work on a BIOS only |
9 |
> box without UEFI, EFI, systemd using EXT4 file system? |
10 |
|
11 |
It's definitely possible - for both usb stick or ordinary boot |
12 |
partition, although it's not quite the same as in distros you've |
13 |
mentioned, since it require either custom made initramfs or some |
14 |
utility which would made one for you (like dracut, genkernel etc). |
15 |
|
16 |
There is several guides which might be useful, just google for one. |
17 |
It doesn't have to be gentoo specific, since the install procedure is |
18 |
almost the same, the only difference is the choice of medium for |
19 |
booting up the encrypted system, bootloader and fstab configuration, |
20 |
partition layout (with/without lvm) and so on. One of teh most |
21 |
comprehensive guide about the topic is the Sakaki's EFI Install |
22 |
Guide [1]. Yeah, I know there is "EFI" word, but it doesn't matter - |
23 |
you can just skip the part with efi partition and make your own |
24 |
pendrive (using syslinux) or create unencrypted boot partition :) |
25 |
|
26 |
[1] https://wiki.gentoo.org/wiki/Sakaki%27s_EFI_Install_Guide |
27 |
|
28 |
-- |
29 |
-^- _ something is grinding the emptiness: |
30 |
_ /O)_\// Kohina - 4-Mat - Saturday - C64 (6581r4) |
31 |
(_(|__(_(_) grf. http://www.kohina.com |