Hello,
I have added (more may follow) both ISOs of the AMD64 and I386 mini-installer
as torrents to my tracker:
http://mxchange.org:23456/
AMD64:
http://mxchange.org:23456/file?info_hash=%C5%C4%B2%88%92%F5%A9O%01udg%92%17gy%22%9A%ED%B7
I386:
http://mxchange.org:23456/file?info_hash=i8%C1%5D%0D
Hi all,
I'm currently testing dm-crypt to encrypt my whole hard drive. So far I
followed this [1] guide and have to wait for the randomization part of the hard
drive.
In the wiki, ext4 is being used. Since ext3 a journal has been added. From my
times with loop-aes I know that I have to store t
Opps, here is the missing link:
http://wiki.gentoo.org/wiki/DM-Crypt
(I don't think it is a good idea to store the keyFile somewhere plain, [2]
tells that there is support for crypt-gnupg, but it doesn't show any help how
to setup it.
[2]: http://wiki.gentoo.org/wiki/Dracut
> You forgot the link to [1].
Already mailed but here again:
http://wiki.gentoo.org/wiki/DM-Crypt
> Never used loop-aes myself. Sorry if I miss the reason for your
> confusion because of it.
http://loop-aes.sourceforge.net
There is the source code. It needs patched util-linux(-ng) package to get
> No comment on dracut as I have no experience with it.
Okay, so I have to try it out myself. When I found something out, I expand the
wiki with it.
>
> However, as I see it, you need no key file if you just use a pass
> phrase. In my opinion, a key file is only necessary for two improvements:
Okay, I have made a little progress. I have generated my private key using some
random data + gpg:
# head -c 3705 /dev/urandom | head -n 66 | tail -n 65 > key.out
# gpg --symmetric -a --s2k-count 8388608 key.out
# mv key.out.asc key.gpg
# rm -f key.out
Now I have to copy that file on my stick a
I think I made a (tollerateable) mistake:
My hard drive has two partitions:
- sda1 - encrypted swap
- sda2 - encrypted root
How should it boot? One way could be by external media (e.g. stick), other is
from hard drive. But that is encrypted. So I must leave a small area left for
kernel, initrd,
> I think the new method for determining swap is to use what makes sense
> and not the old rule of 'twice the ram'.
Okay, agreed.
Roland
> 1. Maybe it would be a good idea to use an ASCII-only random string, for
> example by piping it through `base64 -w 0`. That way you don't loose any
> entropy (the key just gets longer) but it is easier to type the keyfile
> manually, in case you ever need to. You also don't have to worry about
>
Okay, I have setup so far this:
/dev/sda1 - /boot (unencrypted)
/dev/sda2 - swap (not yet setup, will be encrypted)
/dev/sda3 - / (encrypted)
/dev/sda3 is the underlaying drive, where I used gpg:
# gpg --decrypt key.gpg | cryptsetup --verbose luksFormat /dev/sda3
# gpg --decrypt key.gpg | crypts
To add my 2¢:All you need is build initram and pass it as a argument to pre configured kernel (with needed encryption and hash algorithms built in)
Initram scripts are on github here https://github.com/tokiclover/mkinitramfs-ll Can I also use dracut? Or won't it setup initrd? I I didn't setup LVM
> dracut and genkernel will both set up initrd.
Okay, thank you. :)
Now I hang with this:
---
>>> Emerging (1 of 203) dev-db/oracle-instantclient-basic-10.2.0.3-r1
* Fetching files in the background. To view fetch progress, run
* `tail -f /var/log/emerge-
Hi all,
I finally got libxml2 compiled, first I had to do this:
# emerge expat
# emerge python
# cd /usr/portage/dev-lang/python/
# emerge python-2.7.3-r2.ebuild
# cd -
This makes sure that libexpat is there. Now the package is still not compiling
because of a missing .so file, see this:
# cd
> Try `emerge -pvT $foo`. With whatever package $foo you are trying to
> install.
That is already solved (I had selected it somehow) by simply deselecting it.
But is now a little OT. I now try to compile x11-libs/libxcb, and
dev-python/elementtree is not installed on my system.
> Regards,
> Fl
> Weird, I'm on 2.8.0-r1 and didn't have to do any hoop jumping to get
> there (~amd64).
Yes, it is really weird thing. :/ I use x86 (i686, my laptop does only support
32 bit; it is a Thinkpad R51).
Regards,
Roland
> That is already solved (I had selected it somehow) by simply deselecting it.
>
> But is now a little OT. I now try to compile x11-libs/libxcb, and
> dev-python/elementtree is not installed on my system.
There is hope for this matter, see my forum posting:
http://forums.gentoo.org/viewtopic-p-7
> > Isn't it a requirement that all nodes run Gentoo, with the same GCC
> version, and you must setup sys-devel/crossdev on each of them?
>
> I don't see how it could possibly work otherwise.
>
In my first email I wrote that all other nodes have Debian installed, not
Gentoo.
> > > Isn't it a requirement that all nodes run Gentoo, with the same GCC
> > version, and you must setup sys-devel/crossdev on each of them?
> >
> > I don't see how it could possibly work otherwise.
> >
I see the same thing. The next text block I wrote that I have Debian 64 bits
(aka AMD64) on
>
> I was reading this:
>
>http://www.gentoo.org/doc/en/cross-compiling-distcc.xml
I also read it far before I wrote my email.
>
> It specifically mentions you need crossdev:
>
>If you are cross-compiling between different subarchitectures
>for Intel x86 (e.g. i586 and i686), you
I ran into this trouble:
--
/usr/lib/gcc/i486-pc-linux-gnu/4.5.3/../../../../lib/libfreetype.a(ftbzip2.o):
In function `ft_bzip2_stream_close':
(.text+0x121): undefined reference to `BZ2_bzDecompressEnd'
/usr/lib/gcc/i486-pc-linux-gnu/4.5.3/../../../../lib/libfr
> > CFLAGS="-O2 -march=i686 -pipe -fPIC -m32"
> > CXXFLAGS="${CFLAGS}"
> > CHOST="i486-pc-linux-gnu"
I have reformated my disk because I missed a parameter (-d . or so) which would
make it possible for dracut to use gpg key decryption. Now I have to reinstall
all from scratch (including configuri
> $ FEATURES=-distcc emerge klibc
Thanks. :)
Roland
22 matches
Mail list logo
