Cryptsetup Operations: Difference between revisions
Jump to navigation
Jump to search
| Line 24: | Line 24: | ||
... | ... | ||
/dev/sdb: UUID="8a5fa3ae-d997-4c3a-a6f6-ab7ac9007ef8" TYPE="crypto_LUKS" | /dev/sdb: UUID="8a5fa3ae-d997-4c3a-a6f6-ab7ac9007ef8" TYPE="crypto_LUKS" | ||
Open the crypto_LUKS device with: | |||
cryptsetup open <''luks-device''> <''mapping-name''> | |||
where <''mapping-name''> is the name of the device that will be created under /dev/mapper | |||
cryptsetup open /dev/sdb rackstationb | |||
Revision as of 08:35, 24 December 2018
Internal
Overview
cryptsetup is the userspace utility used to manage the dm-crypt encryption functionality.
Installation
yum install cryptsetup
Encrypting a Block Device with cryptsetup/LUKS
Format the block device with LUKS and assign it a passphrase (it is also possible to use a key file).
cryptsetup luksFormat -y -v /dev/sdb
Test password: b4H4x9_3hdHEd
After 'luksFormat' operation, the block device is now type "", as blkid shows:
# blkid ... /dev/sdb: UUID="8a5fa3ae-d997-4c3a-a6f6-ab7ac9007ef8" TYPE="crypto_LUKS"
Open the crypto_LUKS device with:
cryptsetup open <luks-device> <mapping-name>
where <mapping-name> is the name of the device that will be created under /dev/mapper
cryptsetup open /dev/sdb rackstationb