Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
12-26-2016, 06:33 AM
|
#1
|
Member
Registered: Oct 2005
Location: Bangladesh
Posts: 504
Rep:
|
Regarding File System Encryption !!!
Dear Friends ,
I am using Redhat 6.5 and want to enable filesystem encryption. In this case , I enabled encryption one of a disk during OS installation . Now I have the following 2 question :
1) If I enable 'encrypt' for a Filesystem during OS installation which types of encryption is used ?
2) And How can I reset encryption password for this scenario ?
Waiting for kind reply ..
|
|
|
12-26-2016, 11:13 PM
|
#2
|
LQ Guru
Registered: Jan 2005
Location: USA and Italy
Distribution: Debian testing/sid; OpenSuSE; Fedora; Mint
Posts: 5,524
|
The password is fixed. You can't change it. The encryption algorithm is whatever the distro uses. That should be documented.
|
|
|
12-27-2016, 08:56 AM
|
#3
|
Senior Member
Registered: Aug 2009
Distribution: Rocky Linux
Posts: 4,828
|
Of course you can change it. The encryption framework is LUKS, and the manpage for cryptsetup shows you how to add and delete passwords. (You can have up to 8 passwords or key files.)
|
|
|
12-28-2016, 03:02 AM
|
#4
|
Member
Registered: Oct 2005
Location: Bangladesh
Posts: 504
Original Poster
Rep:
|
Thx Nichols.
See the below output :
------------------------------------------------------
[root@localhost ~]# df -H
Filesystem Size Used Avail Use% Mounted on
/dev/sda5 8.7G 2.3G 6.0G 28% /
tmpfs 1.1G 0 1.1G 0% /dev/shm
/dev/dm-0 4.1G 8.2M 3.9G 1% /disk1
/dev/mapper/ncdisk 4.1G 8.2M 3.9G 1% /ncdisk
-------------------------------------------------------
Here ,
/disk1 (/dev/sda1) is encrypted during OS installation and /ncdisk is created by manually by the cryptsetup command with LUKS.
My question was ,
How I found Which encryption was used '/disk1' partition and how can I change encrypt password ?
>> When I use 'cryptsetup' command for '/disk1'---->(/dev/sda1),it shows, it's not a valid LUKS device .
[root@localhost ~]# cryptsetup luksDump /dev/sda1
Device /dev/sda1 is not a valid LUKS device.
IF 'AwesomeMachine' is right then How I can change the password for lost case .
Last edited by shipon_97; 12-28-2016 at 03:04 AM.
|
|
|
12-28-2016, 11:55 AM
|
#5
|
Senior Member
Registered: Aug 2009
Distribution: Rocky Linux
Posts: 4,828
|
The output from "lsblk -f" (run as root) would be helpful here.
|
|
|
12-28-2016, 03:41 PM
|
#6
|
LQ Guru
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 11,369
|
Now, if it were me, I would not bother to use software disk encryption. Purchase a disk drive (or controller) which has on-board (hardware) encryption capability. In my experience (and, "Your Mileage May Vary™"), software encryption exacts a serious performance penalty for a machine that actually has work to do.
Also, it is often the case that only a small amount of data needs to be encrypted, and there are "encrypted folder" technologies available for these purposes. (Basically, you "mount" the encrypted folder.) These are much more targeted such that the overhead of software encryption is much more manageable: you're only encrypting what you really need to. (And, these should not be, say, "MySQL databases" or anything that's going to get a lot of activity. "A folder of confidential documents," say ...)
Last edited by sundialsvcs; 12-28-2016 at 03:43 PM.
|
|
|
12-29-2016, 12:05 AM
|
#7
|
Member
Registered: Oct 2005
Location: Bangladesh
Posts: 504
Original Poster
Rep:
|
Thanx nichols . I can change the password .
|
|
|
All times are GMT -5. The time now is 03:54 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|