Encrypt OS Disk: mudanças entre as edições
Ir para navegação
Ir para pesquisar
(Criou página com '/etc/crypttab <syntaxhighlight lang=text> linux UUID="18fbddd6-48a3-442e-9807-d02e30efc2bc" none luks </syntaxhighlight> /etc/default/grub <syntaxhighlight lang=text> GRUB_DEF...') |
Sem resumo de edição |
||
| (2 revisões intermediárias pelo mesmo usuário não estão sendo mostradas) | |||
| Linha 1: | Linha 1: | ||
=configs= | |||
/etc/crypttab | /etc/crypttab | ||
<syntaxhighlight lang=text> | <syntaxhighlight lang=text> | ||
| Linha 5: | Linha 6: | ||
/etc/default/grub | /etc/default/grub | ||
<syntaxhighlight lang=text> | <syntaxhighlight lang=text> | ||
GRUB_DEFAULT= | # If you change this file, run 'update-grub' afterwards to update | ||
GRUB_TIMEOUT_STYLE=hidden | # /boot/grub/grub.cfg. | ||
GRUB_TIMEOUT= | # For full documentation of the options in this file, see: | ||
# info -f grub -n 'Simple configuration' | |||
GRUB_DEFAULT=saved | |||
GRUB_SAVEDEFAULT="true" | |||
#GRUB_TIMEOUT_STYLE=hidden | |||
GRUB_TIMEOUT=10 | |||
GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian` | GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian` | ||
GRUB_CMDLINE_LINUX_DEFAULT="quiet splash" | GRUB_CMDLINE_LINUX_DEFAULT="quiet splash" | ||
GRUB_CMDLINE_LINUX="" | GRUB_CMDLINE_LINUX="" | ||
# Uncomment to enable BadRAM filtering, modify to suit your needs | |||
# This works with Linux (no patch required) and with any kernel that obtains | |||
# the memory map information from GRUB (GNU Mach, kernel of FreeBSD ...) | |||
#GRUB_BADRAM="0x01234567,0xfefefefe,0x89abcdef,0xefefefef" | |||
# Uncomment to disable graphical terminal (grub-pc only) | |||
#GRUB_TERMINAL=console | |||
# The resolution used on graphical terminal | |||
# note that you can use only modes which your graphic card supports via VBE | |||
# you can see them in real GRUB with the command `vbeinfo' | |||
#GRUB_GFXMODE=640x480 | |||
# Uncomment if you don't want GRUB to pass "root=UUID=xxx" parameter to Linux | |||
#GRUB_DISABLE_LINUX_UUID=true | |||
# Uncomment to disable generation of recovery mode menu entries | |||
#GRUB_DISABLE_RECOVERY="true" | |||
# Uncomment to get a beep at grub start | |||
#GRUB_INIT_TUNE="480 440 1" | |||
GRUB_ENABLE_CRYPTODISK=y | GRUB_ENABLE_CRYPTODISK=y | ||
GRUB_PRELOAD_MODULES="luks cryptodisk lvm ext2" | GRUB_PRELOAD_MODULES="luks cryptodisk lvm ext2" | ||
# | |||
</syntaxhighlight> | </syntaxhighlight> | ||
/etc/initramfs-tools/conf.d/noresume.conf | /etc/initramfs-tools/conf.d/noresume.conf | ||
| Linha 18: | Linha 50: | ||
RESUME=none | RESUME=none | ||
</syntaxhighlight> | </syntaxhighlight> | ||
/etc/grub.d/40_custom | |||
<syntaxhighlight lang=text> | |||
menuentry 'Windows 11' { | |||
savedefault | |||
search --fs-uuid --no-floppy --set=root 102F-FA1B | |||
chainloader (${root})/EFI/Microsoft/Boot/bootmgfw.efi | |||
} | |||
</syntaxhighlight> | |||
=Links= | |||
* https://devconnected.com/how-to-encrypt-root-filesystem-on-linux/ | |||
* https://help.ubuntu.com/community/Full_Disk_Encryption_Howto_2019 | |||
* https://superuser.com/questions/1536669/grub-bootloader-with-root-luks-encryption-only-grub-shell | |||
Edição atual tal como às 23h19min de 9 de março de 2023
configs
/etc/crypttab
linux UUID="18fbddd6-48a3-442e-9807-d02e30efc2bc" none luks
/etc/default/grub
# If you change this file, run 'update-grub' afterwards to update
# /boot/grub/grub.cfg.
# For full documentation of the options in this file, see:
# info -f grub -n 'Simple configuration'
GRUB_DEFAULT=saved
GRUB_SAVEDEFAULT="true"
#GRUB_TIMEOUT_STYLE=hidden
GRUB_TIMEOUT=10
GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian`
GRUB_CMDLINE_LINUX_DEFAULT="quiet splash"
GRUB_CMDLINE_LINUX=""
# Uncomment to enable BadRAM filtering, modify to suit your needs
# This works with Linux (no patch required) and with any kernel that obtains
# the memory map information from GRUB (GNU Mach, kernel of FreeBSD ...)
#GRUB_BADRAM="0x01234567,0xfefefefe,0x89abcdef,0xefefefef"
# Uncomment to disable graphical terminal (grub-pc only)
#GRUB_TERMINAL=console
# The resolution used on graphical terminal
# note that you can use only modes which your graphic card supports via VBE
# you can see them in real GRUB with the command `vbeinfo'
#GRUB_GFXMODE=640x480
# Uncomment if you don't want GRUB to pass "root=UUID=xxx" parameter to Linux
#GRUB_DISABLE_LINUX_UUID=true
# Uncomment to disable generation of recovery mode menu entries
#GRUB_DISABLE_RECOVERY="true"
# Uncomment to get a beep at grub start
#GRUB_INIT_TUNE="480 440 1"
GRUB_ENABLE_CRYPTODISK=y
GRUB_PRELOAD_MODULES="luks cryptodisk lvm ext2"
#
/etc/initramfs-tools/conf.d/noresume.conf
RESUME=none
/etc/grub.d/40_custom
menuentry 'Windows 11' {
savedefault
search --fs-uuid --no-floppy --set=root 102F-FA1B
chainloader (${root})/EFI/Microsoft/Boot/bootmgfw.efi
}