All Questions
4
questions
0
votes
1
answer
157
views
SUDO asks for "Encryption passphrase" on new setup with LUKS
SUDO keeps asking for Encryption passphrase on my latest setup. I'm not sure what encryption the passphrase is for, except that I suspect that it is related to LUKS encryption. Also I noted it doesn't ...
0
votes
0
answers
281
views
Is it necessary to protect GRUB with a password if your volumes are encrypted with LUKS?
I understand there are vulnerabilities around somebody using grub to boot into single user mode and escalate privilages on your machine.
But is there any purpose in doing this if your volume is fully ...
7
votes
1
answer
3k
views
How is LUKS dm-crypt secure if the key is stored with the encrypted data?
I'm not a an expert in cryptography, but I've read the project's faqs.
How is LUKS dm-crypt secure if the key is stored with the encrypted data? To me, this seems like hanging a door key on the door ...
4
votes
1
answer
429
views
What files from the /boot partition, in addition to the MBR, must be hashed in order to detect an "evil maid" attack against LUKS-encrypted Linux?
Are boot.img, initrd, and vmlinuz adequate or should the entire contents be hashed? I am not familiar enough with the Linux boot process to answer this with confidence myself.