I've recently upgraded my backup machine from 11.4 to openSuSE 13.1 and I use an encrypted drive. In the past (prior to systemd) I could edit /lib/cryptsetup/boot.crypto.functions to look something like the following:
# map the devices
if test -n "$luks" || cryptsetup isLuks "$device" &> /dev/null; then
cmd=(luksOpen -d /path/to/my/key "$device" "$name")
However, doing this seems to no longer work as I get a prompt like:
Password entry required for 'Please enter passphrase for disk MYDISK (cr_mountpoint) on /mountpoint!' (PID ####).
Please enter password with the systemd-tty-ask-password-agent tool!
Does anyone know what file I might need to edit to fix this?
On 2013-12-16 21:56, nrickert wrote:
> sailorcire;2608919 Wrote:
>> Does anyone know what file I might need to edit to fix this?
> If the key is in a file that is available at the right time during boot,
> you can put the path in “/etc/crypttab”. Check the man page.
This interests me.
I read time ago that it was possible to keep a large key in a file
stored in external media (memory card, usb stick…), and be prompted
for a passphrase as well, before activating a encrypted partition.
Thus if the memory stick is stolen, it is not enough to read the data.
Cheers / Saludos,
Carlos E. R.
(from 12.3 x86_64 “Dartmouth” at Telcontar)