encryption of partitions/lvm without speakup
themuso at opentts.org
Mon Feb 28 00:49:17 EST 2011
On Mon, Feb 28, 2011 at 03:07:19PM EST, Alex Snow wrote:
> What about just encrypting a separate partition containing just your
> home directories, then arange for that partition to be mounted late in
> the boot process after you have everything related to speach already
Ecryptfs was designed for this very purpose, and when properly integrated, there is no having to deal with keys, the pam authentication framework deals with authenticating, and ecryptfs does the rest.
Note you need to encrypt swap as well for things to be totally secure.
More information about the Speakup