I installed Manjaro alongside Windows on a laptop with EFI. As I want separate system and home partitions, I have an unencrypted root partition with mount point / and an encrypted partition with mount point /home.
This works well but slows down startup since it requires a 2-step login, first giving the encryption password and later my user password.
Is there a way to skip the first step and delay unencryption until logging in? The guides I found so far seems to deal mostly with automounting USB sticks or partitions other than /home.
I don’t want to, if that’s the only way… Just thought that since ecryptfs was unencrypting after giving user password at login, LUKS might be able to do the same.
But the slowdown of the boot process (with LUKS) is not big enough that I want to trade off security to make it faster.
You should use hardware keys. You just touch your key and partition will be unencrypted. In addition you can use same key to login. 2 passwords less to type