cryptsetup luksOpen /dev/sda2 root
Enter decrypt password. Then:
mount /dev/mapper/system-root /mnt
mount /dev/mapper/system-usr /mnt/usr
mount /dev/sda1 /mnt/boot
for i in dev sys proc; do mount --bind /$i /mnt/$i; done
chroot /mnt
Add “luks_root=/dev/sda2” to /boot/grub/menu.lst, then re-run mkinitrd.
To keep kernel updates from messing up your system again, add the string “luks_root=/dev/sda2” to the end of the DEFAULT_APPEND and FAILSAFE_APPEND lines in /etc/sysconfig/bootloader.
]]>can you explain a bit more in detail why
Create /etc/sysconfig/initrd with the following two lines:
root_luks=1
luks=root
is necesary and what it is doing. Is it just necesary for the making of the new initrd or also during the startup?
]]>