LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 12-27-2015, 11:42 AM   #1
MarkCali
LQ Newbie
 
Registered: Dec 2015
Location: California
Distribution: Debian 8
Posts: 3

Rep: Reputation: Disabled
Debian 8 encryption password -- headless?


Newbie, recent build Debian 8, will use as home server. I followed an installation guide I found online which suggested using an "encryption password" that encrypts files on the discs for security. I did that. This means I must type in encryption password as part of the boot process.

My concern is this appears to mean the box cannot be truly headless. I cannot connect with my Windows machine until the Linux boot process is complete, and if typing in a password is part of that process, I cannot make the machine headless but must connect a keyboard and monitor every time I boot the Linux machine.

I understand Linux machines are not rebooted often, and if it is used as a home server that will certainly be the case.

Do most people use an encryption password for the disks on a server, or is that mainly for a desktop box? If encryption is used, is there a way to have server boot and require password later? I plan to later install/use SAMBA for home server connecting with Windows machines. Will that provide the security I need?

My wish is to make the machine truly headless so on the rare occasion I do reboot the machine, I can let it boot by itself and then I can connect using my Windows machine to monitor server functions.

When it boots, it also wants a user/password. I have not tried it due to encryption password, but if Linux server needs user/pass does that also mean I can't connect with Windows box until after user/pass is in? How do I get around that if the Linux machine is headless?

What steps do I need to take to ensure machine is truly headless and can boot on its own and I can simply connect with Windows box after automatic boot processes are complete, yet maintain system security?

I've tried some searching but not found anything that addresses this directly. If there are any online resources that directly address this concept, love to hear about it. Thanks

MarkCali
 
Old 12-27-2015, 08:21 PM   #2
Tim Abracadabra
Member
 
Registered: May 2014
Location: USA, Wherever I may Roam
Distribution: Debian w/Xfce, LFS 7.9, ++
Posts: 117

Rep: Reputation: Disabled
Quote:
I've tried some searching but not found anything that addresses this directly. If there are any online resources that directly address this concept, love to hear about it. Thanks
Found a number of links using:
https://www.google.com/search?q=debi...oot+passphrase

Some methods include installing busybox with dropbear and compile them into the initramfs
which will enable you to ssh in to enter the decryption passphrase.

Note the security implications. You might want to enable this early ssh capability only on an internal non-internet accessible network if you can (Possibly using a second network card (wired) in both the server and the ssh client box).

Hopefully that gives you a start.

All the best,
Tim

Last edited by Tim Abracadabra; 12-27-2015 at 08:42 PM. Reason: alter redundant closing, add wired, only
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Password Encryption knoppixt Linux - Server 5 08-14-2010 07:13 AM
Linux password encryption and data encryption Tux-Slack Programming 4 06-20-2007 06:46 AM
password encryption charafantah Programming 4 10-07-2006 06:13 AM
Password Encryption morningkiran Linux - Security 2 10-10-2004 07:17 AM
Password encryption???: shakeeb Linux - General 4 11-07-2003 07:50 PM


All times are GMT -5. The time now is 10:45 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration