| 29 Apr 2025 |
 lassulus | Dies grub support btrfs for finding the kernel? | 02:01:53 |
 @realhotgirlshit:envs.net | I didn’t know that, but I think that’s what I want | 02:07:04 |
| @realhotgirlshit:envs.net | If not, I will not encrypt /boot | 02:07:54 |
| lassulus | It could be that grub only supports luks1 but we do luks2 nowadays | 02:15:40 |
| lassulus | I used the grub unlockaing years ago. But it was pretty slow and frustrating :D | 02:16:12 |
| lassulus | Maybe this is better if you boot the machine via efi instead of legacy. But not sure | 02:16:35 |
| @realhotgirlshit:envs.net | Yeah, my machine doesn’t support legacy | 03:58:56 |
| @realhotgirlshit:envs.net | I’m looking up tutorials and see if they have anything useful | 03:59:07 |
| @realhotgirlshit:envs.net | I want to encrypt boot if possible | 03:59:16 |
| lassulus | Maybe here is some context about luks2 support in grub: https://savannah.gnu.org/bugs/?55093 | 04:49:38 |
| lassulus | I haven't read it yet. So maybe you can check there | 04:50:21 |
| @realhotgirlshit:envs.net | Okay, so GRUB LUKS2 support is not great | 05:03:51 |
| @realhotgirlshit:envs.net | So no encrypted /boot | 05:04:22 |
| @realhotgirlshit:envs.net | That’s the only ramification, anything about FDE in general? | 05:04:58 |
| lassulus | No I usually do LUKS fde on all my computers | 05:07:42 |
| @realhotgirlshit:envs.net | With GRUB? | 05:09:58 |
| lassulus | That doesnt matter usually. Since the kernel does the decryption in the initrd | 05:10:45 |
| lassulus | I use grub or systemd-boot on different systems | 05:11:13 |
| @realhotgirlshit:envs.net | perfect 😁 | 05:11:36 |
| @realhotgirlshit:envs.net | I’ll remove the cryptodisk stuff | 05:11:46 |
| lassulus | You have to add a /boot partition outside the luks also | 05:12:12 |
| @realhotgirlshit:envs.net | hmm :/ | 05:12:31 |
| @realhotgirlshit:envs.net | I’ll go over the example configs | 05:13:10 |
| @realhotgirlshit:envs.net | yes, that is my disko config | 05:15:27 |
| @realhotgirlshit:envs.net | * yes, that is in my disko config :D | 05:15:54 |
| lassulus | Ah the 1m partition in your config is not the /boot partition. It's an emulation of the MBR for a GPT partition. So you can do legacy boot ir your bios doesn't support efi boot | 05:17:20 |
| lassulus | * | 05:17:36 |
| @realhotgirlshit:envs.net | Right, okay yeah I remember that’s how legacy works | 05:17:58 |
| @realhotgirlshit:envs.net | Okay, it complains about CRYPTODISK not being enabled and /dev/sda not found | 05:42:43 |
| 1 May 2025 |
|  Rosuavio changed their display name from Rosario Pulella to Rosuavio. | 20:07:59 |
