Linux – Exactly how does kickstart encrypt a partition

centosencryptionlinuxluksredhat

Let's say for example I have this line in the pre section of my kickstart file:

part / --asprimary --fstype="ext4" --size=10000 --encrypted --passphrase=pass1

Great, but, how does that work? Exactly how does "–encrypted" encrypt the partition? Does it use: cryptsetup luksFormat ...?

A quick google search can tell me how to use cryptsetup, but a quick google search does not tell me exactly what the "–encryption" flag does. I need to reproduce what it does on a non-encrypted partition in the same exact fashion.

Best Answer

It uses LUKS, the options you can supply are documented, EL6 and 7 are the same

--cipher=
--passphrase=
--escrowcert=URL_of_X.509_certificate
--escrowcert=URL_of_X.509_certificate

It doesn't appear that you can supply arbitrary cryptsetup luksFormat ... options.

Related Solutions

Linux Bash – How to Sort du -h Output by Size

As of GNU coreutils 7.5 released in August 2009, sort allows a -h parameter, which allows numeric suffixes of the kind produced by du -h:

du -hs * | sort -h

If you are using a sort that does not support -h, you can install GNU Coreutils. E.g. on an older Mac OS X:

brew install coreutils
du -hs * | gsort -h

From sort manual:

-h, --human-numeric-sort compare human readable numbers (e.g., 2K 1G)

Cron – When Does cron.daily Run

For the distributions you mention:

On CentOS 5.4 (Should be same for RHEL5)

grep run-parts /etc/crontab

01 * * * * root run-parts /etc/cron.hourly
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly
42 4 1 * * root run-parts /etc/cron.monthly

So cron.daily runs at 04:02am.

Same on CentOS 4.8

Best Answer

Related Solutions

Linux Bash – How to Sort du -h Output by Size

Cron – When Does cron.daily Run

Related Topic