From: Patrick <mailorp@gmail.com>
To: dm-crypt@saout.de
Subject: [dm-crypt] Partition mandatory?
Date: Sun, 19 Jun 2011 15:54:45 +0200 [thread overview]
Message-ID: <4DFDFFA5.70404@gmail.com> (raw)
[-- Attachment #1: Type: text/plain, Size: 1892 bytes --]
Hello,
I am quite new to linux (Ubuntu) and wish to use encrypted drives. I
already use LUKS encrypted disks, that's great.
I have a question regarding full disk encryption.
I tried to find an answer in the doc... "rtfm" did not solve it, neither
did some asking on IRC channels (answers like "no that's bad!", with no
further explanation as why "no" weren't just convincing enough... ;-) ).
The case :
I want to encrypt a full USB disk and my question is : is it mandatory
to have a partition existing on the device and to luskformat the
partition? In other words, is it OK to luksformat the full device,
without mentionning any partition? Is it off "standards"?
In fact, I tried to encrypt a full disk using something like :
/sudo cryptsetup luksFormat -c aes-xts-plain -h whirlpool -s 512 /dev/sdx/
x being the device, without mentioning a partition.
That apparently works perfectly well, the full device is then encrypted
and can be formatted as ext4 or whatever I want it to be formatted to. I
can mount it and use it.
No partition is seen on the device when inserted without decrypting, good.
I would like to know if this could cause some side effects, as I don't
encrypt a partition but directly the device itself.
Being cautious, I did create a partition for now... and did encrypt this
one. The partition using the full disk...
/sudo cryptsetup luksFormat -c aes-xts-plain -h whirlpool -s 512
/dev/sde1 (for example)/*
*
For my own knowledge I would really appreciate to know if it would be OK
to luksformat a full device, without using partitions. And most of all I
would like to know why (whatever yes or no the answer could be! )
Maybe is this question related to the linux "philosophy" and devices
architecture that still isn't fully natural for me for now as I am an
ex-Windows user, but I'm learning and happy to do so! :-)
Hope you can help!
Best regards,
Patrick
[-- Attachment #2: Type: text/html, Size: 2722 bytes --]
next reply other threads:[~2011-06-19 13:54 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-06-19 13:54 Patrick [this message]
2011-06-19 14:53 ` [dm-crypt] Partition mandatory? Milan Broz
2011-06-19 15:25 ` Patrick
2011-06-19 15:46 ` Milan Broz
2011-06-19 17:47 ` Patrick
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4DFDFFA5.70404@gmail.com \
--to=mailorp@gmail.com \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox