[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Initramfs dropbear remote crypt unlock
From: |
Ludovic Courtès |
Subject: |
Re: Initramfs dropbear remote crypt unlock |
Date: |
Mon, 26 Sep 2022 10:44:01 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/28.1 (gnu/linux) |
Hi,
Nick <kolobok38@gmail.com> skribis:
> Is it possible in Guix to activate dropbear in initramfs to remotely unlock
> fully encrypted disk (root) setup? (Like it done in Debian
> dropbear-initramfs package with cryptroot-unlock command)
There’s nothing to do that out of the box, but starting Dropbear from
the initrd is feasible. In a nutshell, you could take a look at
‘raw-initrd’ in (gnu system linux-initrd) and insert a snippet that
spawns Dropbear there. Or maybe ‘luks-device-mapping’ could have an
option for remote unlocking over SSH.
HTH,
Ludo’.