Dirk Heinrichs writes: > Am Sonntag 05 Juli 2009 19:53:20 schrieb Alex Schuster: > > Right :) I didn't want my LUKS key to be in clear-text > > The LUKS key isn't stored as cleartext, it's encrypted.
Um, I mean the passphrase I specify with --key-file to cryptsetup. Or which would be asked at the prompt if I would not give it. > > even if it's in a > > binary file on some server which probably no one will ever see and > > identify as a boot partition. I have my GPG secret key in different > > locations, not only on the encrypted PC we are talking about. > > With LUKS, there is no need for GPG. I always wonder why people do that > GPG stuff when using LUKS. No, my LUKS setup does not make use of GPG. But the backup of my boot partition, residing on a server somewhere, is encrypted with GPG. Wonko