| 1 |
Am 20.04.2015 um 15:43 schrieb Marko Weber | 8000: |
| 2 |
|
| 3 |
> # cryptsetup -c aes-xts:plain64 -y -s 512 luksFormat |
| 4 |
> /dev/mapper/VolGroup01-media2 |
| 5 |
|
| 6 |
As I've already mentioned in my first answer, there is a typo in this |
| 7 |
command. Well, I actually didn't mention that it's a typo, but I gave |
| 8 |
you the correct command: |
| 9 |
|
| 10 |
# cryptsetup -s 256 -y -c aes-xts-plain64 luksFormat |
| 11 |
/dev/mapper/VolGroup01-media2 |
| 12 |
|
| 13 |
Maybe you should consider those parameters: |
| 14 |
-s 512 (for a longer key) |
| 15 |
-h sha512 (otherwise sha1 will get used for the password hash) |
| 16 |
--use-random (manpage says: "Using /dev/urandom can lead to weak keys.") |
| 17 |
|
| 18 |
Or in other words: It's not -c aes-xts:plain64, but -c aes-xts-plain. |
Archives