FS#6552 - /etc/crypttab doesn't ask for password on bootup

Attached to Project: Arch Linux
Opened by ... (nGerrit) - Thursday, 08 March 2007, 11:21 GMT
Last edited by Thomas Bächler (brain0) - Sunday, 13 May 2007, 13:44 GMT
Task Type Feature Request
Category System
Status Closed
Assigned To Thomas Bächler (brain0)
Architecture not specified
Severity Medium
Priority Normal
Reported Version 0.7.2 Gimmick
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Hi,
if you leave the password field in the /etc/crypttab blank or type "none", /etc/rc.sysinit doesn't ask for a password but interprets "none" as your password.
This task depends upon

Closed by  Thomas Bächler (brain0)
Sunday, 13 May 2007, 13:44 GMT
Reason for closing:  Implemented
Additional comments about closing:  Use the ASK keyword instead of a passphrase.
Comment by Thomas Bächler (brain0) - Monday, 12 March 2007, 00:15 GMT
crypttab's current implementation isn't supposed to ask for passphrases.
Comment by ... (nGerrit) - Monday, 12 March 2007, 00:19 GMT
mh well it would be nice. i don't see the whole point in it if you have to fill it in your config file.. why bother at all with the encryption :)

i would very much welcome it as a new feature.

thx
Comment by kei (kei) - Sunday, 15 April 2007, 19:06 GMT
This is a patch against /etc/rc.sysinit, providing a simple password prompt.
   diff (0.7 KiB)
Comment by Thomas Bächler (brain0) - Thursday, 10 May 2007, 19:24 GMT
What is this "REDIRECT" thing for?
Comment by kei (kei) - Thursday, 10 May 2007, 19:42 GMT
Well, it's because I'm a newbie to Arch and Linux in general :-)
I just didn't know if /dev/tty is ALWAYS used as boot console, because I saw systems on which this isn't the case (I saw a similar check in a SuSE init script). So I just included the test to see which console is used.
If you know more about which console device is used for what, I'd be happy if you'd drop me a line :-)
Comment by Thomas Bächler (brain0) - Sunday, 13 May 2007, 02:26 GMT
I'll take care the issue, meaning there will be a way to ask for a passphrase instead of using a hardcoded passphrase/keyfile. If I can do it tomorrow, we will even be able to put it on the upcoming "Duke" Iso. I won't promise anything though.

Loading...