During the installation of manjaro i created one encrypted partition for root and one not encrypted partition for boot, but when i clicked next i received warning from calamares installer that one of the partitions is not encrypted and ask me if i want to go back and encrypt it. I did not encrypt the boot partition because i know that the boot partition should not be encrypted, but i am wondering why i received that warning from calamares.
Consider warning messages as informational, or a reminder; as they can often simply be ignored. On the other hand, errors are by nature a greater call to action, and should be reason for some concern.
Regards.
1 Like
Because Manjaro is designed to use Grub bootloader.
Grub does not work well with LUKS2 so to avoid long decryption time it is a general advise to create an unencrypted boot partition.
If the system is UEFI, the $esp is mounted at /boot/efi (which is always unencrypted), so if the kernel is placed on an unencrypted boot - the warning is displayed.
1 Like
I would ask myself before doing this, what you think this encryption gives to you?
I think the most people are unaware that encryption root don’t adds security as long your device is powered on.
This option is mostly interesting for Laptops who might get physically stolen, while the device is powered off.
For the most people it would actually makes more sense to encrypt a secondary partition, which isn’t required to be perma decrypted while using the device.
2 Likes
I encrypt all partitions for privacy and security. And i use only laptops.