> My wishes for the new layout are: > > * Encrypted /home partition. The rest of the system should stay > unencrypted so it could be restarted by someone else without my > intervention.
if you have a tpm, setting up clevis for tpm auto-unlock is also a possibility here > Though if /home is not decrypted right after reboot, it will lead to > failed mail delivery to maildirs, until I decrypt it. > > * Flexibility. I don't want to face this ugly situation again. > > If I had only one disk, I'd just make one big root partition. But > there are two SSDs, and I could need more than the smallest (111,8G) > disk allows to fit. I could combine them into singe logical partition > using LVM. > > If I decide to proceed with LVM, XFS will be a bad choice because it > cannot be shrinked. So I'll need a different filesystem, like ext4, > Btrfs or maybe even ZFS? if btrfs is a consideration, btrfs does have nativelly support disk pools as well > Booting without initramfs will not be possible anymore, so I'll likely > need more disk space (how much?) for /boot, which can not be a logical > partition if I wish to continue using EFI stub kernels. so far 512mb in /boot has been enough for me, noting that i clean all but the last 2 kernel entries, and i use the default gentoo-kernel, with default dracut initramfs, and with this setup, /boot is usually 200mb used / 312mb free -- (also note, that /boot is the EFI parition for me)
68990292A7A98C5E.asc
Description: application/pgp-keys
signature.asc
Description: PGP signature
