communism@lemmy.ml to

Linux@lemmy.mlEnglish · 8 months ago

I apologise if this is already common knowledge, but I just found out you can have multiple layers of LUKS encryption on a drive!

267

I apologise if this is already common knowledge, but I just found out you can have multiple layers of LUKS encryption on a drive!

communism@lemmy.ml to

Linux@lemmy.mlEnglish · 8 months ago

[Image description:
Screenshot of terminal output:

~ ❯ lsblk
NAME           MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINTS
sda              8:0    1  62.5M  0 disk  
└─topLuks      254:2    0  60.5M  0 crypt 
  └─bottomLuks 254:3    0  44.5M  0 crypt

/end image description]

I had no idea!

If anyone else is curious, it’s pretty much what you would expect:

cryptsetup -y -v luksFormat /dev/sda
cryptsetup open /dev/sda topLuks
cryptsetup -y -v luksFormat /dev/mapper/topLuks
cryptsetup open /dev/mapper/topLuks bottomLuks
lsblk

Then you can make a filesystem and mount it:

mkfs.ext4 /dev/mapper/bottomLuks
mount /dev/mapper/bottomLuks ~/mnt/embeddedLuksTest

I’ve tested putting files on it and then unmounting & re-encrypting it, and the files are indeed still there upon decrypting and re-mounting.

Again, sorry if this is not news to anyone else, but I didn’t realise this was possible before, and thought it was very cool when I found it out. Sharing in case other people didn’t know and also find it cool :)

Chat

radiofreeval [she/her]@hexbear.net
link
fedilink
English
arrow-up
9·
8 months ago
That’s cool and I hope I never see that in the wild
- communism@lemmy.mlOP
  link
  fedilink
  arrow-up
  3·
  8 months ago
  Why not?
  - LostXOR@fedia.io
    link
    fedilink
    arrow-up
    5·
    8 months ago
    Seems like it would be fairly inefficient having to encrypt and decrypt data twice.
    - ryannathans@aussie.zone
      link
      fedilink
      arrow-up
      4·
      8 months ago
      Not only twice but two streams sequentially on the same hardware

Linux@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !linux@lemmy.ml

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1.35K users / day
4.71K users / week
8.23K users / month
20K users / 6 months
1 local subscriber
48K subscribers
6.43K Posts
175K Comments
Modlog