summaryrefslogtreecommitdiff
path: root/doc/forum/dm-crypt__47__LUKS_encryption_and_key_management/comment_1_62fc297972ab5be50b9cb8cd3aa269c0._comment
blob: 0962459fd5350c81fd71f66de9c31c05fa2ae4a8 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
[[!comment format=mdwn
 username="joey"
 subject="""comment 1"""
 date="2018-02-06T15:37:45Z"
 content="""
Not aware of anyone using propellor for that yet.

Propellor's LVM module would probably be a decent starting point for
implementing dm-crypt support.

Key/passwords could certianly be managed with propellor's privdata
interface. Whether it makes sense to do so for security is probably up to
the individual user, since privdata can be decrypted with your gpg private
key, which you might not want to equate to access to your encrypted volume.
Also, privdata is stored on the host that uses it in unencrypted form
protected only by file permissions.
"""]]