01.03.2016 15:05, Daniel Bauer пишет:
Am 01.03.2016 um 12:16 schrieb Andrei Borzenkov:
On Tue, Mar 1, 2016 at 1:32 PM, Daniel Bauer <linux@daniel-bauer.com> wrote:
Hello,
I'd like to have a fully encrypted laptop (all except /boot/ , incl. / and swap) with leap 42.1.
...
I know there is a possibility to use an LVM (I'd have to update my forgotten knowledge, though :-) ), BUT
- my system / will be on a SSD, while the rest (/home) will be on a normal HD. As far as my searches showed me, it is not an intelligent choice to put an SSD and a normal HD in an LVM...
So create two VG, one for each disk type. Where is the problem? :)
You can also create encrypted partition for /home later, without using YaST (and not using LVM at all).
Oh, oh... So I reinstalled: unencrypted /boot each an encrypted raw on the SSD and the HD each a LVM on those encrypted raws - one subvolume for / on the LVM "system" on the SSD-LVM - a subvolume for swap and one for /home on the HD
Now after the first boot I get: GNU GRUB version 2.02 beta2 Minimal bash... grub >
That's all. No password question. No booting. I must have done something wrong. But what?
There was a bug in grub2/shim in handling secure boot with encrypted /boot/grub2. It should work when disabling secure boot (in firmware and Linux) when installing, full updating Leap and enabling secure boot again. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org