Ubuntu

Full disk encryption and LVM configuration in Ubuntu’s graphical installer

Ubiquity, Ubuntu Desktop‘s graphical installation program, is very easy to use, very newbie friendly, but it lacks support for full disk encryption, LVM, the Linux Logical Volume Manager, and RAID. On a desktop system, I do not care very much about RAID, but full disk encryption and LVM are must-haves.

Well, it looks like from Ubuntu 12.10, due in late October, Ubiquity will have support for full disk encryption and LVM. The test build that I installed in a virtual machine shows that the implementation is still in the early stages, but it also shows how easy it will be to configure both features when the final release hits the digital shelves.

The following screen shots show the options in the installer and the default configuration. The test system already had the alpha version of Ubuntu 12.10 on it, so if you choose the first option, LVM and disk encryption are not available.
LVM and Encrypt

They are only available if you opt to erase the disk and install Ubuntu standalone.
LVM and Encryption

When LVM is selected, the system creates three partitions by default: A primary partition (sda1) mounted at /boot of about 228 MB in size; an extended partition initialized for use by LVM (this is the Physical Volume), with two logical volumes created under it. The logical volumes are for root and Swap. So unlike the default setup in Fedora, there is no separate logical volume for /home.
LVM  Partitions

If the LVM and disk encryption options are both selected, you will have to specify a security key or passphrase that will be used to encrypt and decrypt the disk. Currently, the installer does not check the strength of the security key, even allowing you to set a 1-character security key. That is obviously not good, but I expect that to be rectified before the final version is released.
Disks Encryption Passphrase

With disk encryption configured, you get this screen on each reboot.
Encryption Passphrase

And this just shows the disk layout as seen from the disk management utility. Selecting LVM and disk encryption creates an encrypted LVM volume, because the Physical Volume is encrypted. Note that LVM and disk encryption have not been implemented in the Advanced Partitioning Tool. But that, too, should be in place by late October.
Encrypted LVM

Related Posts

How to install Cinnamon in Ubuntu 11.10 Cinnamon is a new desktop environment, forked from GNOME 3 by the developers of Linux Mint. It is intended as an optional desktop for those who have n...
Home directory and full disk encryption in Ubuntu 11.04 Disk encryption is one of several security features built into the Linux kernel that you may use to enhance the physical security rating and posture o...
Ubuntu is not a community distribution That should be obvious to anybody who's been following the development of Ubuntu, but for those who have not, here's the deal: Ubuntu is not a communi...
Ubuntu Core to bring Snappy and transactional updates to the Cloud Mark Shuttleworth has announced a beta release of Ubuntu Core, a version of Ubuntu server for the Cloud that does not use debs or apt-get for system a...
How to triple-boot Fedora 15, Ubuntu 11.04 and Windows 7 Triple-booting windows 7 and two Linux distributions is a little bit more involved than dual-booting it with a distribution. You have to decide in wha...
How to dual-boot Windows 10 and Ubuntu 15.10 on two hard drives Ubuntu 15.10 is the latest edition of Ubuntu, the popular Linux distribution sponsored by Canonical. This tutorial shows how to dual-boot the deskt...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


10 Comments

  1. unfortunately, even after stable release, installing ubuntu 12.10 alongside another OS does not allow you the option to have an encrypted LVM. Nor can you achieve the same result by the manual partition tool.

  2. Good article, exactly what I was looking to know and glad that the Ubuntu devs have made it so easy.

    @Abhishek: I don’t think he needs to explain the benefits of disk encryption, this is a blog article about how to use it which implies you might already know something about it, and if not there’s a wealth of information elsewhere that’s very easy to find.

  3. Thanks for the detailed article. It could have better if you mentioned or provided link to explain the benefits of full disk encryption.

  4. Pingback: Encrypted LVM in Quantal « 0ddn1x: tricks with *nix

Leave a Comment

Your email address will not be published. Required fields are marked *

*