[dm-crypt] unlocking dm-crypt from grub - kernel in crypted volume

Olivier Sessink oliviersessink at gmail.com
Tue Aug 23 11:14:06 CEST 2011

Hi all,

There seems to be some support for dm-crypt in grub, such that you can 
store the kernel in the encrypted volume, and only have grub 
unencrypted. This makes the attack vector a lot smaller, however, it is 
unclear to me if there is any development on this subject. For example 
passing the password in a safe way from grub to the kernel might be 
useful to make such a solution acceptable for end users.

Is there news on this development?


More information about the dm-crypt mailing list