ext3 /dev/mapper/encrypted_feisty_luks
7. Mount the new virtual device:
# mount /dev/mapper/Ubuntu_feisty_luks /mnt/feisty_luks
8. We have assigned one password for accessing this encrypted file system.
LUKS provides support allowing you to add up to eight different
passwords for access to this file system. This support enables you to provide
multiple users with access. You can add new passwords by using the
luksAddKey option:
# cryptsetup luksAddKey /dev/loop0
Encryption
[ 110 ]
9. You can get status information from the LUKS header. This will show you
the open slots, the encryption algorithm used and other status information:
# cryptsetup luksDump /dev/loop0
10. You can delete or revoke keys at any time. We will delete the key from slot 1:
# cryptsetup luksDelKey /dev/loop0 1
11. Now you can install Ubuntu into this mounted file system following the
steps that we have used earlier in this book. After you complete installing
Ubuntu, unmount the filesystem.
Chapter 7
[ 111 ]
12. Add the definition of the encrypted filesystem to /etc/crypttab. The retry
parameter specifies the maximum number of times that you will be asked to
re-enter password when a wrong or invalid password is provided. The check
parameter specifies the type of the file system that is to be mounted:
encrypted_feisty /dev/mapper/encrypted_feisty_luks none luks,
check=ext3,retry=5
13. Add the device to the file systems that are mounted upon boot in
/etc/fstab:
/dev/mapper/encrypted_feisty_luks /mnt/feisty_luks ext3
defaults 0 2
14.
Pages:
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104