From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail.saout.de ([127.0.0.1]) by localhost (mail.saout.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IA9kc6M2fhcH for ; Sat, 8 Sep 2012 10:13:40 +0200 (CEST) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.171]) by mail.saout.de (Postfix) with ESMTP for ; Sat, 8 Sep 2012 10:13:40 +0200 (CEST) Date: Sat, 8 Sep 2012 10:13:38 +0200 From: Heinz Diehl Message-ID: <20120908081338.GC1540@fancy-poultry.org> References: <20120823193415.GA31534@tansi.org> <50378927.7090508@gmail.com> <20120824144028.GB2407@fancy-poultry.org> <20120824151439.GA30694@tansi.org> <20120905130125.GB11942@tansi.org> <20120906164659.GA20640@tansi.org> <20120906175309.GA1621@fancy-poultry.org> <20120906195810.GA24770@tansi.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20120906195810.GA24770@tansi.org> Subject: Re: [dm-crypt] Encrypt all partitions with dm-crypt List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: dm-crypt@saout.de On 06.09.2012, Arno Wagner wrote: > I was thinking about automatic swap set-up. If you do that > with a non-random key, you have to store it somewhere and that > will be a problem. I created my swap partiton while installing the distribution. The whole harddisk (laptop) is LUKS/dmcrypt encrypted. When I start up the machine, all I have to do is to provide the proper passphrase, and all my encrypted partitions will be unlocked, incl. swap. As far as I can see, dracut stores the passphrase in memory, unlocks the root-partition first, and runs the same passphrase on all the other LUKS-devices afterwards. I can't see how this procedure could be a problem related to swap, and why I maybe should choose a random key over a predefined one.