first of all..... nope.... you cannot encrytp the boot partiton.... but why would you want to ?
also, encrypting the root partiton IS possible.... but again.. why would you want to ?
you only need to encrypt the Home folder...
there are 2 ways of doing this depending on wether or not the hme directory IS or IS NOT on its own partiton..
if the home directory is on its own partiton... then somthing like the following would work...
Code:
#Log in as root
#un-mount the home partiton
umount /home
#create en encrypted device map called 'ehome'
#replace /dev/hda3 with the location of your home partiton.
cryptsetup -c aes -h ripemd160 -b `blockdev --getsize /dev/hda3` create ehome /dev/hda3
#format the encrypted device map
mkreiserfs /dev/mapper/ehome
# or mkfs.ext3 /dev/mapper/ehome for ext3 filesystem
#now mount the encrypted home directory
mount /dev/mapper/ehome /home
if your home directory is NOT on its own partiton... then the following
Code:
#Log in as root
#un-mount the home partiton
umount /home
#create a pretend partiton.
#replace 1024 with the size of the required home directory in mega bytes
dd if=/dev/urandom of=/EHOME bs=1M count=1024
#create a loopback device pointing to the rpetend partiton
losetup /dev/loop1 /EHOME
#create an encrypted device map
cryptsetup -c aes -h ripemd160 -b `blockdev --getsize /dev/loop1` create ehome /dev/loop1
#format....
#format the encrypted device map
mkreiserfs /dev/mapper/ehome
# or mkfs.ext3 /dev/mapper/ehome for ext3 filesystem
#now mount the encrypted home directory
mount /dev/mapper/ehome /home
this is just to initiate the home diectory.... next time you boot.. before you login, you will need to only mount the partiton... not format it or anything else....
just the cryptsetup, losetup and mount commands.
for this to work... you must have the following kernel modules loaded...."dm-crypt" "loop" "aes"
and have the program "cryptsetup" installed.
