Hi,
Has anyone ever though about or implemented some form of encrypted volume
within the fai images created using fai-cd ?
I'm thinking about some encryption, such that the initramfs or systemd
prompts for a password to unlock it.
I'm not sure quite how to easy it is to hook into the fai-cd ima
Good Day Just,
Justin Cattle, on 2019-03-22 :
> Has anyone ever though about or implemented some form of
> encrypted volume within the fai images created using fai-cd ?
Yes!
> I'm thinking about some encryption, such that the initramfs or
> systemd prompts for a password to unlock it.
>
> I'm no
Hi Étienne,
Thanks very much for your response.
Re-reading my email, I don't think I was clear enough. So I _think_ you
may have mis-understood what I was asking.
What I actually want to do is, produce an ISO using the fai-cd utility, but
make some of the contents of that ISO encrypted.
So, n
setup-storage is not used during the creation of fai-cd.
--
regards Thomas
Good Day All,
Justin Cattle, on 2019-03-22 :
> Re-reading my email, I don't think I was clear enough. So I
> _think_ you may have mis-understood what I was asking.
Your thinking is right, I misunderstood the situation. It could
have come from the clarity of your email perhaps, or simply from
t
No problem, thanks anyway Étienne.
Cheers,
Just
On Sat, 23 Mar 2019 at 08:51, Étienne Mollier
wrote:
> Good Day All,
>
> Justin Cattle, on 2019-03-22 :
> > Re-reading my email, I don't think I was clear enough. So I
> > _think_ you may have mis-understood what I was asking.
>
> Your thinkin
Hi Thomas,
Is there any way of customising the fai-cd process? [ without hacking the
scripts ] ?
Does it use FAI hooks at all ?
Or do you have any other ideas ?
Cheers,
Just
On Fri, 22 Mar 2019 at 22:40, Thomas Lange
wrote:
> setup-storage is not used during the creation of fai-cd.
> --
> re
Hi Justin,
On Fri, 2019-03-22 at 22:36 +, Justin Cattle wrote:
>
> What I actually want to do is, produce an ISO using the fai-cd
> utility, but make some of the contents of that ISO encrypted.
> So, not encrypting the disks in the server, but part or all of the
> ISO used to build the server
> On Sat, 23 Mar 2019 11:08:59 +, Justin Cattle said:
> Is there any way of customising the fai-cd process? [ without hacking the
scripts ] ?
> Does it use FAI hooks at all ?
No, fai-cd is not using hooks.
A simple idea would be, as Andrew said, just to add an encrypted file
to t
Yes, those are good alternatives.
I've also been considering a debian package with an encrypted blob, and a
postinst script that requires user input to decrypt it.
Thanks for your suggestions - time for some cogitating :)
Cheers,
Just
On Sat, 23 Mar 2019 at 11:37, Thomas Lange
wrote:
>
10 matches
Mail list logo
