Install Ubuntu 15.04 with full disk encryption, but without swap partition

partitioning encryption swap lvm
9,619

The ubuntu installer (ubiquity) is quite limited in this regard. So we need to do it manually instead of the installer.

So when you run the Live CD/USB, choose "Try ubuntu", and launch gparted to partition your drive.

You need to make an ESP (sda1) (if you use EFI+GPT), a boot partition (256MB for example, sda2), another partition (for example, sda3) that will hold the crypted container called LUKS.

Then open a terminal (ctrl-alt-t)

Setup LUKS device

sudo cryptsetup --key-size 512 luksFormat /dev/sda3
sudo cryptsetup luksOpen /dev/sda3 crypted

Setup LVM on LUKS

If you don't want to use multiple partition, you can skip the following paragraph and avoid LVM. In that case, use /dev/mapper/crypted as you root latter on instead

sudo pvcreate  /dev/mapper/crypted
sudo vgcreate vg /dev/mapper/crypted
sudo lvcreate -L 15G vg -n root
sudo lvcreate -l 100%FREE vg -n home

Installation

Keep the terminal opened and now run the installation. Choose "Something else" when partitioning and specify

  • your boot partition (/dev/sda2)
  • your root partition (/dev/mapper/vg-root)
  • your home partition (/dev/mapper/vg-home)
  • any other needed partition...
  • and check the checkbox to format your partitions

At the end of the installation, don't reboot but just click "Continue trying ubuntu"

Post-install

In our opened terminal:

Create /etc/crypttab to add crypted partition

sudo mount /dev/mapper/vg-root /mnt
echo "crypted UUID=`blkid -o value /dev/sda3|head -1` none luks" | sudo tee /mnt/etc/crypttab
sudo umount /mnt

That's it ! Reboot now.

Share:
9,619
Caballero
Author by

Caballero

Updated on September 18, 2022

Comments

  • Caballero
    Caballero over 1 year

    I have a laptop with 16GB of RAM, but SSD is only 64GB. I need to install Ubuntu 15.04 with both standard options - "Encrypt the new Ubuntu installation for security" and "Use LVM with the new Ubuntu installation". I don't want to create a swap partition, or at the very least I need to decrease it to the minimum, because by default it's taking up 16GB that will never be used.

    How can I make this work? If I choose "Something else" I can't see any clear options how to accomplish this.

  • silasdavis
    silasdavis almost 9 years
    We also need to chroot into the environment and update-initramfs -u else it won't boot: thesimplecomputer.info/full-disk-encryption-with-ubuntu

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Increase Swap in Ubuntu 18.04 Under Lvm and Encrypted File System
Recover data from formatted LVM (Luks, Ext3) after Ubuntu installed over it
Problem removing swap partition
How to expand an encrypted ubuntu partition with LVM
Why encrypt the swap partition
How does LUKS work?
Encrypted Swap Partition for 14.04
How to migrate an encrypted LVM install to a new disk
Swap not working on clean 14.04 install using encrypted home
How can I modify the size of swap with LVM partitions?