1 |
On Tue, Dec 29, 2015 at 4:34 PM, Hans <linux@××××××××××××××.au> wrote: |
2 |
> |
3 |
> Is it possible to fully encrypt a Gentoo system as can be done with Fedora, |
4 |
> Suse, Arch Linux, Debian and Ubunto without using a unencrypted USB boot |
5 |
> stick or unencrypted /boot partition? |
6 |
> |
7 |
|
8 |
I'm pretty sure grub can support LUKS. See for example: |
9 |
https://wiki.archlinux.org/index.php/GRUB#Boot_partition |
10 |
|
11 |
If you have instructions for Arch the same instructions would probably |
12 |
work almost without modification on Gentoo. Since both distros tend |
13 |
to follow upstream they tend to be very similar. Neither uses a lot |
14 |
of auto-magic configuration as far as I'm aware. |
15 |
|
16 |
> If yes, where can I find instructions that really work on a BIOS only box |
17 |
> without UEFI, EFI, systemd using EXT4 file system? |
18 |
|
19 |
There is a doc on the Wiki, though I haven't used it myself: |
20 |
https://wiki.gentoo.org/wiki/DM-Crypt_LUKS |
21 |
|
22 |
I'd recommend using dracut in general for your initramfs. It seems to |
23 |
be the most robust and cross-platform option out there. |
24 |
|
25 |
Otherwise I'd probably follow the Arch instructions and adapt as necessary. |
26 |
|
27 |
-- |
28 |
Rich |