cross-posted from: https://programming.dev/post/9319044

Hey,

I am planning to implement authenticated boot inspired from Pid Eins’ blog. I’ll be using pam mount for /home/user. I need to check integrity of all partitions.

I have been using luks+ext4 till now. I am hesistant hesitant to switch to zfs/btrfs, afraid I might fuck up. A while back I accidently purged ‘/’ trying out timeshift which was my fault.

Should I use zfs/btrfs for /home/user? As for root, I’m considering luks+(zfs/btrfs) to be restorable to blank state.

  • unhinge@programming.devOP
    link
    fedilink
    arrow-up
    4
    ·
    10 months ago

    that sounds good.

    Have you used luks integrity feature? though it’s marked experimental in man page

    • uiiiq@lemm.ee
      link
      fedilink
      arrow-up
      2
      ·
      10 months ago

      I have the same use-case as @[email protected]. I didn’t test the integrity feature because it is my work machine and I am not fond of doing experimental stuff on it.

    • Possibly linux
      link
      fedilink
      English
      arrow-up
      1
      ·
      10 months ago

      If you want to be sure you don’t loss data make sure you backup your keys.