#dmcrypt — Public Fediverse posts

After trying to find some tweaks on how to make loading screens shorter in Fallout 76, I discovered I haven't even enabled TRIM and disabled workqueue on the drive I have the game installed on!

A trip to https://wiki.archlinux.org/title/Dm-crypt/Specialties and I found the solution

# cryptsetup --allow-discards --perf-no_read_workqueue --perf-no_write_workqueue --persistent open /dev/sdaX root

sdaX & root are just placeholders for drive and I guess which drive it is on /dev/mapper

#fallout76 #archlinux #dmcrypt #bethesda

💥🍾🎆 Happy New Year 2026 From Shufflecake - 2025 in Review 🎆🍾💥

2025 was a good year for our little project!

We focused mostly on improving the performance and correctness of Shufflecake Lite, and the results are *impressive*! We reached, and in some test case *exceeded* the I/O throughput of dm-crypt, which is the *golden standard* for encrypted filesystems on Linux!

(continue)

#shufflecake #privacy #security #linux #foss #cryptography #crypto #dmcrypt #luks #veracrypt #cypherpunk

🔒 Secure your data the native Linux way!
Just published a step-by-step guide to building a LUKS2 encrypted container on Debian 13 — with both CLI & a handy tray GUI. 🚀🐧

🧅👉 https://reycdxyc24gf7jrnwutzdn3smmweizedy7uojsa7ols6sflwu25ijoyd.onion/2025/09/14/encrypted-container/

🌎👉https://0ut3r.space/2025/09/14/encrypted-container/

#Linux #Debian #Encryption #LUKS #dmcrypt #CyberSecurity #Privacy #OpenSource #Tutorial #HowTo

PS: This fancy social media post was generated by AI. Because my posts are always boring, sad, and stale. xD

Когда хочется странного: шифруем Linux, упаковываем в контейнер, запускаем на реальном железе

Привет, Хабр! 👋 Это моя первая статья здесь, да и вообще-то - первая, поэтому - судите строго. Или не строго. Или не судите. В общем, как хотите. Пишу её в первую очередь для себя — чтобы систематизировать накопленный опыт. Ну а если кому-то окажется полезно — буду только рад. Если нет... что ж, тоже не расстроюсь. Сегодня мы поговорим о dm-crypt в Linux — точнее даже не столько о нем, сколько о его использовании в немного необычном ключе: запуск полноценной ОС из зашифрованного контейнера , без выделения отдельного дискового раздела. Всё, что вы здесь прочитаете — это мой личный опыт , без претензий на истину в последней инстанции. Я не собираюсь вступать в вечные полемики "LUKS против plain", "dm-crypt против VeraCrypt" и тому подобное. Мне просто было интересно попробовать кое-что нестандартное. Почему? Потому что могу. И потому что — как говорится, «руки чесались».

https://habr.com/ru/articles/905472/

#dmcrypt #шифрование #контейнеризация #linux

https://dyne.org/tomb/ minimalistic command line tool based on Linux #dmcrypt and #LUKS

Frage an die datenschützenden SysAdmins und angewandten IT-Sicherheitsforschenden unter euch:

Bietet #Festplattenverschlüsselung in einem angemieteten #VPS auf #KVM-Basis einen wirkungsvollen #Datenschutz?

Dieser Text hat mich verunsichert: https://lowendbox.com/blog/how-private-is-your-hosted-data-really-even-that-encrypted-stuff/

#LUKS #dmcrypt #kvm #vps

Turns out, #LVM #RAID-1 with #dmintegrity over two separate physical disks and then putting a #dmcrypt device on top of the RAID is really slow. As in, it's estimating to take a week to do the initial sync on the two 12TB WD Red drives on SATA. (For comparison, zeroing out one of these disks should take 8 hours or something.)

Apparently it's a somewhat-known problem with dm-integrity, related to its journal.

How would you build something bitrot-safe & encrypted with that hardware? #Debian 12.

Thanks for all the suggestions and links.

I will try putting a new / temporary key into the initramfs just for while I am out of town - the chance of power outage is higher than the chance of burglary.

I'll remove the temp key and rebuild the initramfs after I get back home. Normally, I'm in front of the computer when it reboots, so entering the password manually (as I've been doing for a few years) is fine.

#DMCrypt #DiskEncryption #Linux

Is there a good way to have a #Linux server reboot unattended when the root partition is dm_crypt encrypted? I'm not super worried about bad guys being physically present. More just worried that a power outage might initiate a reboot while I am not present.

Is including the key file in the initramfs (correct terminology?) that horrible a thing if physical access to the machine is not a concern?

Thoughts or advice?

#DMCrypt #DiskEncryption

Cómo montar un volumen cifrado usando dm-crypt, LUKS y password-store
con lukspass

#Cryptsetup #Disk #DmCrypt #Encrypted #Luks #Mount #Pass #Passphrase #Password #PasswordStore #SysAdmin

https://osiux.com/2023-03-01-how-to-mount-encrypted-volume-using-lukspass.html

Disk-Verschlüsselung in Linux wird schneller - Pro-Linux
https://www.pro-linux.de/news/1/27908/disk-verschl%C3%BCsselung-in-linux-wird-schneller.html

#Linux #dmcrypt #verschlüsselung #patch

@NHonigdachs I recently found out that Android 9 (and, by consequence, Lineage 16) makes a giant step backward, technologically, in this respect :-(

#dmcrypt is no longer included in the system, instead they now tout some utterly intransparent, hardware-assisted "file based encryption" crap.

Setting a different boot / encryption password from the screen-unlock code (using some tools from the F-droid store or the corresponding command-line commands) no longer works.

-> https://blog.cryptographyengineering.com/2016/11/24/android-n-encryption/#comment-3123