Setting up encrypted Laptop -- Follow up
Richard Wilson
relw at mchsi.com
Sat Mar 8 20:41:36 MST 2008
Correction: the parm below is vga=773, reference
http://en.wikipedia.org/wiki/VESA_BIOS_Extensions#Linux_video_mode_numbers
RW
---------------------
On Sat, 2008-03-08 at 20:08 -0700, Richard Wilson wrote:
> All,
>
> I have found an article that outlines more or less exactly what I want
> to do at http://www.tummy.com/Community/Articles/cryptoroot-f8/ -- it
> outlines how to install Fedora 8 with only an unencrypted /boot
> partition. In the instructions though, it uses an option that can only
> be done using the graphic installer, which, so far, I haven't gotten to
> work.
>
> In the installer I am editing the vmlinuz parms and adding "nohz=off
> nolapic" without those, the install on my Dell Latitude D810 hangs when
> it says "running /sbin/loader". With those parms it boots the install
> successfully but displays vertical gray bars right after it
> "successfully" starts the X server...
>
> I tried adding "vga=733" to tell it to try a 1024x768 display, but that
> didn't work either. I am using the flat panel built into the laptop
> with the ATI Radeon built-in video controller... I may have to switch to
> using a CRT for teh install.
>
> Fedora 8 runs fine on this hardware -- I had it up and running before I
> got ordered to encrypt (or be forced to run only Windows). I used the
> text based installer last time.
>
> Again, thanks in advance for any insights into this.
>
> Richard Wilson
> ---------------------------------------------------------------------------
> On Sat, 2008-03-08 at 08:10 -0700, chip33az at netscape.net wrote:
> > Richard Wilson wrote:
> > > All,
> > >
> > > I am setting up my laptop to be as encrypted as possible, and I'm
> > > leaning towards using LUKS partitions to do the work. Is it possible to
> > > only have an unencrypted /boot and have everything else encrypted? From
> > > what I found on the 'net so far, that may not be possible.
> > >
> > > I have experimented with Truecrypt as well and that is a decent
> > > alternative. Any opinions as to which is "better"?
> > >
> > > Any full disk encryption tools out there that are Linux compatible?
> > >
> > > Thanks in advance,
> > >
> > > Richard Wilson
> > > relw at mchsi dot com
> > >
> > > ---------------------------------------------------
> > > PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> > > To subscribe, unsubscribe, or to change your mail settings:
> > > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> > >
> > This is exactly what I did. On my PC, I used Gutsy and on my laptop I
> > used Etch. I kind of flip-flop between the two.
> >
> > If you use the Gutsy alternative disc, you can set up encryption.
> >
> > What I typically do is have the /boot as ext3, then use the rest of the
> > drive partitioned for encryption. I then use LVM to break the partition
> > into two sections, swap and root (I could do more). I then install as
> > usual. Works great.
> >
> > For my backup, I use a little thumb drive that was encrypted with
> > TrueCrypt. They have an installer for Ubuntu, but for Etch one has to
> > compile it. There are instructions in their forums about this. Not too
> > difficult. I like their new front-end for it.
> >
> > From what I have heard the new Fedora 9 will over full drive encryption
> > as well.
> > ---------------------------------------------------
> > PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> > To subscribe, unsubscribe, or to change your mail settings:
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
More information about the PLUG-discuss
mailing list