50 lines
1.1 KiB
Markdown
50 lines
1.1 KiB
Markdown
# install ubuntu full ZFS with zfs encryption
|
|
Boot the Ubuntu 20.04 Desktop installer/live CD.
|
|
Click the “Try Ubuntu” button.
|
|
launch a terminal
|
|
|
|
~~~
|
|
$ sudo su
|
|
# apt install ssh
|
|
~~~
|
|
|
|
set a passwd to root to permit remote ssh
|
|
|
|
~~~
|
|
# passwd
|
|
New password :
|
|
Retype new passord :
|
|
passwd: password updated successfully
|
|
~~~
|
|
|
|
Edit */etc/ssh/sshd_config* to Enable PermitRootLogin change *prohibit-password* to *yes* like bellow.
|
|
|
|
~~~{.shell}
|
|
#PermitRootLogin prohibit-password
|
|
PermitRootLogin yes
|
|
~~~
|
|
|
|
~~~
|
|
service ssh restart
|
|
~~~
|
|
|
|
find yout IP with : *ip a*
|
|
|
|
then connect remotely with : *ssh*
|
|
# update zsys-setup
|
|
to enable zfs encryption and create a swap partition right sized for hibernation.
|
|
|
|
## enable zfs encyption on rpool
|
|
|
|
bpool remain unencrypt.
|
|
|
|
Search for “zpool create”, and make sure you have found the create command that has “rpool” on the last line.
|
|
Before the “zpool create” insert: echo MYPASSWORD |
|
|
Before the last line of the command insert these lines:
|
|
|
|
~~~{.cpp}
|
|
-O recordsize=1M \
|
|
-O encryption=aes-256-gcm \
|
|
-O keylocation=prompt \
|
|
-O keyformat=passphrase \
|
|
~~~ |