Hello,
I'm joining with gp...@ccf.auth.gr.
The whole idea (at least for me) of using a keyfile instead of a passphrase
for unlocking a LUKS encrypted volume is that I don't have to enter the
passphrase by hand.
I've tried to enter all the correct information into:
melissa:~# cat /etc/cryptmount/cmtab
# /etc/cryptmount/cmtab - encrypted file system information for cryptmount
# try 'man 8 cryptmount' or 'man 5 cmtab' for more details
enca {
dev=/dev/sdi1
dir=/media/usb
fstype=vfat
keyfile=/dev/sdi1
keyformat=luks
}
melissa:~# cat /etc/crypttab
# <target name> <source device> <key file> <options>
enca /dev/sdi1 /etc/cryptmount/enca.key luks
but when I try to mount it, cryptmount asks me for a passphrase instead of
using the keyfile:
melissa:~# cryptmount enca
Enter password for target "enca":
man crypttab doesn't say anything about not being able to use a keyfile with a
luks encrypted volume.
man cmtab says that when using keyformat=luks, keyfile should be either left
out or be the device itself.
When it is possible to mount the partition manually via:
cryptsetup luksOpen /dev/sdi1 testfs --key-file /etc/cryptmount/enca.key
It should, in my opinion, be possible to automount with the same key file.
--
Torgeir Skjøtskift
Tel: +47 454 38 972
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
