From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-77678-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1JfevE-0004AU-1f
	for garchives@archives.gentoo.org; Sat, 29 Mar 2008 17:32:52 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 15C4FE0348;
	Sat, 29 Mar 2008 17:32:50 +0000 (UTC)
Received: from out4.smtp.messagingengine.com (out4.smtp.messagingengine.com [66.111.4.28])
	by pigeon.gentoo.org (Postfix) with ESMTP id ECEE9E0348
	for <gentoo-user@lists.gentoo.org>; Sat, 29 Mar 2008 17:32:49 +0000 (UTC)
Received: from compute1.internal (compute1.internal [10.202.2.41])
	by out1.messagingengine.com (Postfix) with ESMTP id C22BCE4000;
	Sat, 29 Mar 2008 13:32:49 -0400 (EDT)
Received: from heartbeat1.messagingengine.com ([10.202.2.160])
  by compute1.internal (MEProxy); Sat, 29 Mar 2008 13:32:49 -0400
X-Sasl-enc: K+fM/BmhXMGvHoBiCpqiRNvXRE4Q3d1wicfiFbVmVgU/ 1206811969
Received: from [192.168.2.2] (dslb-088-075-021-082.pools.arcor-ip.net [88.75.21.82])
	by mail.messagingengine.com (Postfix) with ESMTPSA id 0A4AEAF1B
	for <gentoo-user@lists.gentoo.org>; Sat, 29 Mar 2008 13:32:48 -0400 (EDT)
Subject: [gentoo-user] Cryptfs
From: Florian Philipp <lists@f_philipp.fastmail.net>
To: Gentoo-User <gentoo-user@lists.gentoo.org>
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Shn5FzoHaDkdCoQXyr9+"
Date: Sat, 29 Mar 2008 18:32:21 +0100
Message-Id: <1206811941.13252.13.camel@NOTE_GENTOO64.PHHEIMNETZ>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0
X-Mailer: Evolution 2.12.3 
X-Archives-Salt: 971ca8ad-416e-496f-b1b7-cbfaa2132078
X-Archives-Hash: 7edd922e0186e58c4e2de8c3799bd299


--=-Shn5FzoHaDkdCoQXyr9+
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Hi list!

I think I have problems understanding the way /etc/conf.d/cryptfs works.

My goal is to open a Luks-mapping for /var with a gpg-encrypted file
on /boot and then open a mapping for /var/tmp with a plaintext file
on /var.

I thought it would work with the following settings:

/etc/conf.d/cryptfs

target=3Dvar
source=3D'/dev/mapper/vg-crypt_var'
key=3D'/boot/key.gpg:gpg'

target=3Dvar_tmp
source=3D'/dev/mapper/vg-crypt_var_tmp'
key=3D'/var/lib/tmp_key'

___________

/etc/fstab

/dev/mapper/var		/var 		reiserfs [...]
/dev/mapper/var_tmp	/var/tmp	reiserfs [...]

___________

I've read the warning in /etc/conf.d/cryptfs about /usr on a separate
partition and followed their advice.

However, the setup doesn't work. I'm not asked for the passphrase, the
mappings are not created. What did I forget?=20

Thanks in advance!

Florian Philipp

--=-Shn5FzoHaDkdCoQXyr9+
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)

iD8DBQBH7n0lqs4uOUlOuU8RAujuAJwIabIwFvunei6BViH4k8LfpTtgyQCdGdx0
eOzWH0ntCA1XTsgRPt79NWk=
=IyL7
-----END PGP SIGNATURE-----

--=-Shn5FzoHaDkdCoQXyr9+--

-- 
gentoo-user@lists.gentoo.org mailing list