Hi Steve, My bootkeyscript is used to perform dual-factor authentication. Typically, it fetches the LUKS VG key-file from an external device (i.e. US key or SD card) which is itself LUKS encrypted - and it prompts for a decryption passphrase for this.
It gets the UUID of the LUKS container and keyfle name from /etc/cryptttab So I would say this script adds a bit of recursion by opening a LUKS container to fetch a file that is the key to the main LUKS container ;-) It works perfectly, my 1st version dates back to 2007 and the current version hasn't been modified since march, 2010... That's GPL, feel free to reuse it ;-) For udev: # dpkg -s udev | head Package: udev Status: install ok installed Priority: important Section: admin Installed-Size: 997 Maintainer: Ubuntu Developers <[email protected]> Architecture: amd64 Multi-Arch: foreign Version: 175-0ubuntu19 ** Attachment added: "Dual-form authentication boot keyscript" https://bugs.launchpad.net/ubuntu/+source/cryptsetup/+bug/1155222/+attachment/3575286/+files/bootkeyscript -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1155222 Title: Cryptsetup initramfs wants EVMS - Bug in /usr/share/initramfs- tools/scripts/local-top/cryptroot To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/cryptsetup/+bug/1155222/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
