Support remote LUKS unlocking via SSH

oddlama / gentoo-install

A gentoo installer with a TUI interface that supports systemd and OpenRC, EFI and BIOS, as well as variable disk layouts using ext4, zfs, btrfs, luks and mdraid.

MIT License

531 stars 72 forks source link

Support remote LUKS unlocking via SSH #100

Open thiblizz opened 1 year ago

thiblizz commented 1 year ago

This is the last thing I really need, so I could use this script on all my machines (including servers).

Seems like using dropbear is the preferred approach, here we are using dracut to generate an initramfs.

Additional references: https://github.com/dracut-crypt-ssh/dracut-crypt-ssh https://wiki.gentoo.org/wiki/Custom_Initramfs/Examples#Simple_initramfs_for_unlocking_LUKS_encrypted_root_remotely_over_SSH

oz123 commented 9 months ago

This should be easy as dracut already has a plugin that supports that.