This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
kigen [2014/11/24 01:14] 0.0.0.0 created |
kigen [2014/11/24 02:15] (current) ben |
||
---|---|---|---|
Line 10: | Line 10: | ||
===== Configuration ===== | ===== Configuration ===== | ||
- | {{File|/ | + | {{File|/ |
===== Building the initramfs ===== | ===== Building the initramfs ===== | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
kigen i --rootpasswd=changgeme | kigen i --rootpasswd=changgeme | ||
- | </source>}} | + | </code>}} |
===== Tweaks ===== | ===== Tweaks ===== | ||
First, extract the initramfs so we can make changes to it. | First, extract the initramfs so we can make changes to it. | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
kigen t --extract=/ | kigen t --extract=/ | ||
- | </source>}} | + | </code>}} |
- | {{Note|< | + | {{Note|'' |
The dropbox provided by Sabayon is linked to some libraries in /usr/lib which don't get picked up by kigen' | The dropbox provided by Sabayon is linked to some libraries in /usr/lib which don't get picked up by kigen' | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
mkdir / | mkdir / | ||
cp / | cp / | ||
- | </source>}}} | + | </code>}}} |
Dropbear also needs some keys created, which won't get done automatically. | Dropbear also needs some keys created, which won't get done automatically. | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
mkdir / | mkdir / | ||
dropbearkey -t dss -f / | dropbearkey -t dss -f / | ||
dropbearkey -t rsa -f / | dropbearkey -t rsa -f / | ||
- | </source>}} | + | </code>}} |
Rebuild the initramfs with the new changes | Rebuild the initramfs with the new changes | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
kigen t --compress=/ | kigen t --compress=/ | ||
- | </source>}} | + | </code>}} |
===== Usage ===== | ===== Usage ===== | ||
- | The kernel line in grub needs to be amended with the networking and dropbear instructions. Append the following to the defaults in <tt>/ | + | The kernel line in grub needs to be amended with the networking and dropbear instructions. Append the following to the defaults in '' |
- | < | + | '' |
Update the initrd line as well if necessary. | Update the initrd line as well if necessary. | ||
Line 51: | Line 51: | ||
Finally, reboot, and try SSHing into the host. Run the following command when prompted, to unlock the root filesystem and continue the boot process. | Finally, reboot, and try SSHing into the host. Run the following command when prompted, to unlock the root filesystem and continue the boot process. | ||
- | {{Root|<source lang="bash"> | + | {{Root|<code bash> |
- Replace /dev/sda4 below with the encrypted root partition | - Replace /dev/sda4 below with the encrypted root partition | ||
./ | ./ | ||
- | </source>}} | + | </code>}} |