Encrypted boot

Hi, Nathan!

you show in the course, that once you have encrypted boot partition in Linux with LUKS full-disk encryption, you have to enter the same password twice, each time you boot.

  1. Why is it needed 2x?

  2. Can it be securely done with only 1x password entering?

Regards,

Dan

Hi, you can go through this article where it explains why the password is required 2 times and how you can avoid it SDB:Encrypted root file system - openSUSE Wiki

Thanks! Is this method secure?

I assume yes considering the blog is on the opensuse website

I meant, do you think it is safe to store the root decryption key file inside the /boot folder and the initrd?

As long as you have full control of your device then yes otherwise no