void-docs icon indicating copy to clipboard operation
void-docs copied to clipboard
verified publisher icon void-linux

Tracking: Improving FDE content.

Open flexibeast opened this issue 5 years ago • 2 comments

This issue consolidates #284, #375, #398 and #432. Further requests for corrections / improvements to FDE-related content should be made here, until all outstanding issues have been resolved.

  • [ ] Refactor "Full Disk Encryption" section (#284)
  • [ ] Add information regarding swap(/files) and hibernation in Full Disk Encryption (#375)
  • [ ] FDE + EFI reworking (#398)
  • [ ] Clarify what steps need to be taken to enable TRIM on an FDE setup (#432)

i'll close #284, #375, #398 and #432 as superseded by this issue, but of course, the discussions in those issues should still be referred to.

cc: @Kratacoa, @brihadeesh, @cinerea0

flexibeast avatar Aug 23 '20 05:08 flexibeast

In case it may be useful, I have documented my personal installation in this gist, using BTRFS + swapfile encryption.
However, it is an incomplete guide (it is missing secure boot and proper SSD configuration).
I may contribute once I inquire again into it and have a clearer idea of what's going on.

Kratacoa avatar Aug 25 '20 09:08 Kratacoa

I would like to see a guide added that does not encrypt /boot, but only encrypts /.

ghost avatar May 03 '21 08:05 ghost