Remote disk unlocking: Difference between revisions
imported>Mweinelt mNo edit summary |
imported>0x4A6F No edit summary |
||
Line 1: | Line 1: | ||
= Unlocking your LUKS via SSH and Tor = | = Unlocking your LUKS via SSH and Tor = | ||
If you want to unlock your | If you want to unlock your computer remotely, and you are facing the problem, that you can’t reach your computer before your computer is unlocked, Tor will help you to reach your computer, even during the boot process. | ||
== SSH in initrd == | == SSH in initrd == | ||
Line 102: | Line 102: | ||
'';</pre> | '';</pre> | ||
That was it. Tor should be running during your boot process. | That was it. Tor should be running during your boot process. | ||
=== Setup ntpdate === | |||
If your system doesn't utilize a RTC you've to ensure time is correctly set before startup of tor. | |||
Append in your <code>boot.initrd.extraUtilsCommands</code>. | |||
<pre> | |||
copy_bin_and_libs ${pkgs.ntp}/bin/ntpdate | |||
</pre> | |||
Then use this snippet before <code>echo "tor: starting tor"</code> in your <code>boot.initrd.network.postCommands</code>. | |||
<pre> | |||
echo "ntp: starting ntpdate" | |||
echo "ntp 123/tcp" >> /etc/services | |||
echo "ntp 123/udp" >> /etc/services | |||
ntpdate w.x.y.z # pick one IP from https://www.ntppool.org/ | |||
</pre> | |||
== Unlock your LUKS via SSH and Tor == | == Unlock your LUKS via SSH and Tor == |