\tLinux comes with the cryptsetup command. It is used to setup dm-crypt (transparent disk encryption subsystem in Linux kernel) managed device-mapper mappings.<\/p>\n
<\/p>\n
\tLinux comes with the cryptsetup command. It is used to setup dm-crypt (transparent disk encryption subsystem in Linux kernel) managed device-mapper mappings. This shell script can be used to mount dm-crypt based partitions with passphrase:<\/p>\n
\n\n
- \n
\t\t\t\t#!\/bin\/bash<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# A simple shell to mount<\/span> disk encryption based parition under Linux.<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# Tested on Debian and Ubuntu base NAS servers.<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# –––––––––––––––––––––––––-<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# Written by Vivek Gite <http:\/\/www.cyberciti.biz\/><\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# (<\/span>c)<\/span> 2008<\/span> nixCraft under GNU GPL v2.0<\/span>+<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# –––––––––––––––––––––––––-<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# Last updated: 05<\/span>\/Dec\/2011<\/span><\/span><\/div>\n<\/li>\n- \n
\t\t\t\t# –––––––––––––––––––––––––-<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t\u00a0<\/div>\n<\/li>\n- \n
\t\t\t\t### commands ###<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_crypt=<\/span>„\/sbin\/cryptsetup”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_vg=<\/span>„\/sbin\/vgscan”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_vgc=<\/span>„\/sbin\/vgchange”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_mnt=<\/span>„\/bin\/mount”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t\u00a0<\/div>\n<\/li>\n- \n
\t\t\t\t### SET ME FIRST ###<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t### Partition specific settings ###<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t### SET ME FIRST ###<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_device=<\/span>„\/dev\/md3”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_name=<\/span>„securebackup”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_mnts=<\/span>„\/dev\/cryptvg\/mybackup „<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t_mntd=<\/span>„\/securebackup\/”<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t\u00a0<\/div>\n<\/li>\n- \n
\t\t\t\techo<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t${<\/span>_crypt}<\/span><\/span> luksOpen ${<\/span>_device}<\/span><\/span> $_name<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t\u00a0<\/div>\n<\/li>\n- \n
\t\t\t\techo<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t${<\/span>_vg}<\/span><\/span> –mknodes<\/div>\n<\/li>\n- \n
\t\t\t\t${<\/span>_vgc}<\/span><\/span> -ay<\/div>\n<\/li>\n- \n
\t\t\t\t\u00a0<\/div>\n<\/li>\n- \n
\t\t\t\techo<\/span><\/div>\n<\/li>\n- \n
\t\t\t\t${<\/span>_mnt}<\/span><\/span> ${<\/span>_mnts}<\/span><\/span> ${<\/span>_mntd}<\/span><\/span><\/div>\n<\/li>\n<\/ul>\n\t\t\u00a0<\/div>\n<\/blockquote>\n\n\t\tThis script is stored on our nas server. All backups are on RAID-6 disks are encrypted. The nas server is online 24×7. After rebooting the server you need to run this script to mount the dm-crypt based partition. A sample session is as follows:<\/p>\n
\n\t\t\t
$ ssh vivek@nas112.backup.lan.nixcraft.co.in
\t\t\t$ sudo \/usr\/local\/sbin\/mount.crypt<\/code><\/p>\n<\/blockquote>\n\t\tSample outputs:<\/p>\n
\nEnter passphrase for \/dev\/md3: Reading all physical volumes. This may take a while... Found volume group \"cryptvg\" using metadata type lvm2 1 logical volume(s) in volume group \"cryptvg\" now active <\/pre>\n<\/blockquote>\n\t\tVerify disk space and newly mounted partition:<\/p>\n
\n\t\t\t
$ df -H<\/code><\/p>\n<\/blockquote>\n\t\tSample outputs:<\/p>\n
\nFilesystem Size Used Avail Use% Mounted on \/dev\/md0 127G 930M 120G 1% \/ tmpfs 1.1G 0 1.1G 0% \/lib\/init\/rw udev 1.1G 267k 1.1G 1% \/dev tmpfs 1.1G 0 1.1G 0% \/dev\/shm \/dev\/md2 1.6T 88G 1.5T 6% \/data \/dev\/mapper\/cryptvg-mybackup 635G 59G 544G 10% \/securebackup <\/pre>\n<\/blockquote><\/div>\n\t\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"
Linux comes with the cryptsetup command. It is used to setup dm-crypt (transparent disk encryption subsystem in Linux kernel) managed device-mapper mappings.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[30],"tags":[180,1108,1107,1106],"class_list":["post-6174","post","type-post","status-publish","format-standard","hentry","category-informatica","tag-cript","tag-disk","tag-mount","tag-script"],"_links":{"self":[{"href":"https:\/\/site.noi3.org\/index.php?rest_route=\/wp\/v2\/posts\/6174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/site.noi3.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/site.noi3.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/site.noi3.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/site.noi3.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6174"}],"version-history":[{"count":0,"href":"https:\/\/site.noi3.org\/index.php?rest_route=\/wp\/v2\/posts\/6174\/revisions"}],"wp:attachment":[{"href":"https:\/\/site.noi3.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/site.noi3.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/site.noi3.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}