cryptboot-ssh
cryptboot-ssh copied to clipboard
fetzerms
Retrieve cryptsetup keyfiles via ssh automatically at boot.
So in Testing/Buster the initramfs generation starts to throw warnings about pending deprecation. ```console [root@manus ~]# update-initramfs -u -k all update-initramfs: Generating /boot/initrd.img-4.17.0-1-amd64 cryptsetup: WARNING: Honoring CRYPTSETUP=[y|n] will deprecated in...
Maybe it would make sense to misuse the _keyfile_ field to pass the keyserver address to the keyscript. > The executable at the indicated path is executed with the key...
At this time the client will try for a fairly long time, until giving up. I reckon it would be much more useful to decrease this time significantly. One possible...
I could upload a VM image with a working setup somewhere. This should make debugging and development a lot easier.
As a system administrator, I want to see when and who retrieves cryptkeys from the cryptserver. As the logging facilities differ much from system to system and from administrator to...
It seems to me, that the setupScripts do everything, which the README.md documents. Wouldn't it be less confusing to new users, if the README tells the user precisely how to...
It seems - oddly enough - to be a tad non-trivial to enable hostnames for resolving the keyserver in initramfs. Furthermore it seems to work just fine, if it's using...
I plan to run a key server on Android using dropbear or SSHDroid. At the moment it seems very attractive to me, since one tends to be very attentive with...
In order to show how #18 can be used, a sample script that logs access to syslog should be created.