Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am using Redhat 6.5 and want to enable filesystem encryption. In this case , I enabled encryption one of a disk during OS installation . Now I have the following 2 question :
1) If I enable 'encrypt' for a Filesystem during OS installation which types of encryption is used ?
2) And How can I reset encryption password for this scenario ?
Of course you can change it. The encryption framework is LUKS, and the manpage for cryptsetup shows you how to add and delete passwords. (You can have up to 8 passwords or key files.)
Now, if it were me, I would not bother to use software disk encryption. Purchase a disk drive (or controller) which has on-board (hardware) encryption capability. In my experience (and, "Your Mileage May Vary™"), software encryption exacts a serious performance penalty for a machine that actually has work to do.
Also, it is often the case that only a small amount of data needs to be encrypted, and there are "encrypted folder" technologies available for these purposes. (Basically, you "mount" the encrypted folder.) These are much more targeted such that the overhead of software encryption is much more manageable: you're only encrypting what you really need to. (And, these should not be, say, "MySQL databases" or anything that's going to get a lot of activity. "A folder of confidential documents," say ...)
Last edited by sundialsvcs; 12-28-2016 at 03:43 PM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.