[Trilug-ontopic] how to shrink superblock?
mhrivnak at hrivnak.org
Mon Aug 8 11:18:50 EDT 2011
+1 for Alan's LVM plug and for whole-disk encryption. In addition to
the great instructions he has on his blog, you can also do it with the
text-based debian installer (also available for ubuntu and some of its
derivatives). Do manual partitioning, and go through something like
1) setup 2 actual partitions, a small one for /boot, and the rest for
an encrypted device
2) go through the encryption setup, aiming it at the partition you just made
3) setup your new encrypted block device as a physical device for LVM
4) go through the LVM setup to create a volume group and then logical volumes
That gets you to the same structure Alan mapped out, but you don't
have to deal directly with grub, fstab, fdisk, crypttab, etc.
On Mon, Aug 8, 2011 at 10:32 AM, Alan Porter <porter at trilug.org> wrote:
> I don't have an answer to your immediate problem with
> the partition resize. However, after you get your current
> mess cleaned up, you may want to look at LVM. I use it
> all over the place, even on my laptop. It's really great to
> create and resize and remove partitions on the fly without
> messing with the partition table.
> I gave a presentation on LVM (and RAID and LUKS) to the
> LUG back in January. There are some starter notes inside.
> In case you're thinking "I can't use LVM... this is SWAP",
> I'll point out that Linux is perfectly happy with a swap
> partition on top of LVM on top of LUKS. That's how I set
> my laptop up, so that the entire disk is encrypted at a
> very low level. The boot sequence is smart enough to
> find the swap partition to recover from hibernate.
> + part1 = 128MB for /boot
> + part2 = 600GB LUKS partition
> - + LVM physical volume /dev/mapper/cryptoroot
> - - + LVM volume group "vg1"
> - - - + LVM logical volume "home"
> - - - + LVM logical volume "swap"
> - - - + LVM logical volume "mint"
> - - - + LVM logical volume "music"
> - - - + LVM logical volume "movies"
> - - - + LVM logical volume "temp-work"
> Blog post about encrypting your entire disk:
> The advantage of using a single LUKS partition as an LVM
> physical volume (as opposed to making a normal PV with
> encrpyted LV's on top) is that I enter one password at
> bootup time to access the entire encrypted disk.
> # ɹǝʇɹoԀ uɐl∀
> Trilug-ontopic mailing list
> Trilug-ontopic at trilug.org
More information about the Trilug-ontopic