Matthias Fetzer
Matthias Fetzer
I just checked: There shouldnt be much to do, in order to get the server script posix sh compatible. I think the hash comparison (= instead of ==) is one...
For now, we're using "command=" which forces a specific command. This ensures that the ssh-keys for retrieving the keyfiles cannot open a interactive session (and therefore retrieve more than just...
The ${SSH_ORIGINAL_COMMAND^^} ensures, that the mac address is in all uppercases. Tho this only works in bash. We could replace this with tr or awk. ``` tr '[:lower:]' '[:upper:]' tr...
This sounds like a good idea. Do you need some place to upload it to? I have some spare resources and could easily spin up a vm for you.
Sounds like a good plan. We can either host it on google drive, or do some private hosting (as said, resources shouldn't be the problem). Or maybe we just mirror...
Indeed. :+1: for Vagrant.
Maybe we should also mention tries= in crypptab. But I dont think that lowering the value below the default three tries.
The question on "how often should it loop" should be left to the settings in the crypttab file (tries option). Tho, we could propose a good default value. We might...
If a specified threshold has been exceeded. I think we only need to execute: `/lib/cryptsetup/askpass "Please enter passphrase: " > /lib/cryptsetup/passfifo ` But I'm not sure if we want to...
Yes. I agree on that - we should also keep things as simple as possible. The user himself should decide how often he wants to retry. We should mention the...