Can I automount encrypted /home?

I installed Manjaro alongside Windows on a laptop with EFI. As I want separate system and home partitions, I have an unencrypted root partition with mount point / and an encrypted partition with mount point /home.

This works well but slows down startup since it requires a 2-step login, first giving the encryption password and later my user password.

Is there a way to skip the first step and delay unencryption until logging in? The guides I found so far seems to deal mostly with automounting USB sticks or partitions other than /home.

What’s the point of encryption if you want to store the key file unencrypted on your boot or root partition? (This is how it can be done.)

You can look at systemd-homed to do this. However, it’s not really officially supported.

I don’t want to, if that’s the only way… Just thought that since ecryptfs was unencrypting after giving user password at login, LUKS might be able to do the same.

But the slowdown of the boot process (with LUKS) is not big enough that I want to trade off security to make it faster.

You should use hardware keys. You just touch your key and partition will be unencrypted. In addition you can use same key to login. 2 passwords less to type :wink:

Thanks for the tip! Not ready for this at the moment, but will look into it later. For now closing this thread as a kind of “won’t fix”

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.