IT运维需要思维创新
2010-10-30 20:12
330 查看
使加密分区自动挂载,
1.查看分区的uuid 如下图:也可以使用blkid查看,
[root@server1 ~]# ll /dev/disk/by-uuid/
total 0
lrwxrwxrwx. 1 root root 10 Jul 16 05:57 3c5611fe-9d40-44f1-aaae-63fd12b88586 -> ../../dm-0
lrwxrwxrwx. 1 root root 10 Jul 16 05:59 79a9a7b6-bfca-46b3-80d5-1323e82c38df -> ../../sda7
lrwxrwxrwx. 1 root root 10 Jul 16 05:57 912a609f-1ddc-4c72-932a-c55ea18c934d -> ../../sda6
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 a7a09bba-751f-427a-b3a7-b91ee6eb3a5a -> ../../sda1
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 b714dd11-0c1e-4d9a-9541-9512286bb56d -> ../../sda3
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 bf88fead-5856-4500-8913-a3ceb4d620ff -> ../../sda2
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 d010c333-c041-42b3-98c2-c5bc89983229 -> ../../sda5
lrwxrwxrwx. 1 root root 10 Jul 16 06:02 ee8915c1-0aca-470c-ac31-d13131792fef -> ../../dm-1
[root@server1 ~]# blkid
/dev/sda1: UUID="a7a09bba-751f-427a-b3a7-b91ee6eb3a5a" TYPE="ext4"
/dev/sda2: UUID="bf88fead-5856-4500-8913-a3ceb4d620ff" TYPE="ext4"
/dev/sda3: UUID="b714dd11-0c1e-4d9a-9541-9512286bb56d" TYPE="ext4"
/dev/sda5: UUID="d010c333-c041-42b3-98c2-c5bc89983229" TYPE="swap"
/dev/sda6: UUID="912a609f-1ddc-4c72-932a-c55ea18c934d" TYPE="crypto_LUKS"
/dev/sda7: UUID="79a9a7b6-bfca-46b3-80d5-1323e82c38df" TYPE="crypto_LUKS"
/dev/mapper/udisks-luks-uuid-912a609f-1ddc-4c72-932a-c55ea18c934d-uid500: LABEL="opt" UUID="3c5611fe-9d40-44f1-aaae-63fd12b88586" TYPE="ext4"
/dev/mapper/rhel: UUID="ee8915c1-0aca-470c-ac31-d13131792fef" TYPE="ext4"
2.在/etc/fstab文件中添加自动挂载项。如下图
[root@server1 ~]# vim /etc/fstab #
# /etc/fstab
# Created by anaconda on Thu Jul 14 10:07:44 2011
#
# Accessible filesystems, by reference, are maintained under '/dev/disk'
# See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) for more info
#
UUID=bf88fead-5856-4500-8913-a3ceb4d620ff / ext4 defaults 1 1
UUID=a7a09bba-751f-427a-b3a7-b91ee6eb3a5a /boot ext4 defaults 1 2
UUID=b714dd11-0c1e-4d9a-9541-9512286bb56d /home ext4 defaults 1 2
UUID=d010c333-c041-42b3-98c2-c5bc89983229 swap swap defaults 0 0
tmpfs /dev/shm tmpfs defaults 0 0
devpts /dev/pts devpts gid=5,mode=620 0 0
sysfs /sys sysfs defaults 0 0
proc /proc proc defaults 0 0
UUID=ee8915c1-0aca-470c-ac31-d13131792fef /rhel ext4 defaults 0 0
3. 但是在系统重新启动时,不会自动挂载此分区,启动过程提示如下错误,
4.登录后,不会自动挂载,如下图:
[root@server1 ~]# mount
/dev/sda2 on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0")
/dev/sda1 on /boot type ext4 (rw)
/dev/sda3 on /home type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
[root@server1 ~]# mount -a
mount: special device UUID=ee8915c1-0aca-470c-ac31-d13131792fef does not exist
[root@server1 ~]# df -hl
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 20G 4.0G 15G 22% /
tmpfs 250M 260K 250M 1% /dev/shm
/dev/sda1 194M 24M 161M 13% /boot
/dev/sda3 4.9G 140M 4.5G 3% /home
5.查看映射状态,提示没有此映射,如下图:
[root@server1 ~]# cryptsetup status rhel
/dev/mapper/rhel is inactive.
[root@server1 ~]# ll /dev/mapper/
total 0
crw-rw----. 1 root root 10, 58 Jul 16 07:41 control
6.需要手动重新映射才可以成功,如下图:
[root@server1 ~]# cryptsetup luksOpen /dev/sda7 rhel
Enter passphrase for /dev/sda7:
[root@server1 ~]# mount –a 重新读取/etc/fstab挂载
[root@server1 ~]# df -hl
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 20G 4.0G 15G 22% /
tmpfs 250M 260K 250M 1% /dev/shm
/dev/sda1 194M 24M 161M 13% /boot
/dev/sda3 4.9G 139M 4.5G 3% /home
/dev/mapper/rhel 492M 11M 457M 3% /rhel
如果希望在系统启动时自动挂载加密分区,需要做如下配置,
1.建立加密分区的密钥文件,如下图:
[root@server1 ~]# cat rhel_pass
123456
[root@server1 ~]# cryptsetup luksAddKey /dev/sda7 /root/rhel_pass
Enter any passphrase:
2.修改配置文件/etc/crypttab,如下图:
[root@server1 ~]# cat /etc/crypttab
rhel /dev/sda7 /root/rhel_pass
映射名 分区 密码文件位置
本文出自 “技术在于先知与后知” 博客,请务必保留此出处http://cslzy.blog.51cto.com/101859/617442
1.查看分区的uuid 如下图:也可以使用blkid查看,
[root@server1 ~]# ll /dev/disk/by-uuid/
total 0
lrwxrwxrwx. 1 root root 10 Jul 16 05:57 3c5611fe-9d40-44f1-aaae-63fd12b88586 -> ../../dm-0
lrwxrwxrwx. 1 root root 10 Jul 16 05:59 79a9a7b6-bfca-46b3-80d5-1323e82c38df -> ../../sda7
lrwxrwxrwx. 1 root root 10 Jul 16 05:57 912a609f-1ddc-4c72-932a-c55ea18c934d -> ../../sda6
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 a7a09bba-751f-427a-b3a7-b91ee6eb3a5a -> ../../sda1
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 b714dd11-0c1e-4d9a-9541-9512286bb56d -> ../../sda3
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 bf88fead-5856-4500-8913-a3ceb4d620ff -> ../../sda2
lrwxrwxrwx. 1 root root 10 Jul 16 05:48 d010c333-c041-42b3-98c2-c5bc89983229 -> ../../sda5
lrwxrwxrwx. 1 root root 10 Jul 16 06:02 ee8915c1-0aca-470c-ac31-d13131792fef -> ../../dm-1
[root@server1 ~]# blkid
/dev/sda1: UUID="a7a09bba-751f-427a-b3a7-b91ee6eb3a5a" TYPE="ext4"
/dev/sda2: UUID="bf88fead-5856-4500-8913-a3ceb4d620ff" TYPE="ext4"
/dev/sda3: UUID="b714dd11-0c1e-4d9a-9541-9512286bb56d" TYPE="ext4"
/dev/sda5: UUID="d010c333-c041-42b3-98c2-c5bc89983229" TYPE="swap"
/dev/sda6: UUID="912a609f-1ddc-4c72-932a-c55ea18c934d" TYPE="crypto_LUKS"
/dev/sda7: UUID="79a9a7b6-bfca-46b3-80d5-1323e82c38df" TYPE="crypto_LUKS"
/dev/mapper/udisks-luks-uuid-912a609f-1ddc-4c72-932a-c55ea18c934d-uid500: LABEL="opt" UUID="3c5611fe-9d40-44f1-aaae-63fd12b88586" TYPE="ext4"
/dev/mapper/rhel: UUID="ee8915c1-0aca-470c-ac31-d13131792fef" TYPE="ext4"
2.在/etc/fstab文件中添加自动挂载项。如下图
[root@server1 ~]# vim /etc/fstab #
# /etc/fstab
# Created by anaconda on Thu Jul 14 10:07:44 2011
#
# Accessible filesystems, by reference, are maintained under '/dev/disk'
# See man pages fstab(5), findfs(8), mount(8) and/or blkid(8) for more info
#
UUID=bf88fead-5856-4500-8913-a3ceb4d620ff / ext4 defaults 1 1
UUID=a7a09bba-751f-427a-b3a7-b91ee6eb3a5a /boot ext4 defaults 1 2
UUID=b714dd11-0c1e-4d9a-9541-9512286bb56d /home ext4 defaults 1 2
UUID=d010c333-c041-42b3-98c2-c5bc89983229 swap swap defaults 0 0
tmpfs /dev/shm tmpfs defaults 0 0
devpts /dev/pts devpts gid=5,mode=620 0 0
sysfs /sys sysfs defaults 0 0
proc /proc proc defaults 0 0
UUID=ee8915c1-0aca-470c-ac31-d13131792fef /rhel ext4 defaults 0 0
3. 但是在系统重新启动时,不会自动挂载此分区,启动过程提示如下错误,
4.登录后,不会自动挂载,如下图:
[root@server1 ~]# mount
/dev/sda2 on / type ext4 (rw)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
tmpfs on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0")
/dev/sda1 on /boot type ext4 (rw)
/dev/sda3 on /home type ext4 (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
[root@server1 ~]# mount -a
mount: special device UUID=ee8915c1-0aca-470c-ac31-d13131792fef does not exist
[root@server1 ~]# df -hl
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 20G 4.0G 15G 22% /
tmpfs 250M 260K 250M 1% /dev/shm
/dev/sda1 194M 24M 161M 13% /boot
/dev/sda3 4.9G 140M 4.5G 3% /home
5.查看映射状态,提示没有此映射,如下图:
[root@server1 ~]# cryptsetup status rhel
/dev/mapper/rhel is inactive.
[root@server1 ~]# ll /dev/mapper/
total 0
crw-rw----. 1 root root 10, 58 Jul 16 07:41 control
6.需要手动重新映射才可以成功,如下图:
[root@server1 ~]# cryptsetup luksOpen /dev/sda7 rhel
Enter passphrase for /dev/sda7:
[root@server1 ~]# mount –a 重新读取/etc/fstab挂载
[root@server1 ~]# df -hl
Filesystem Size Used Avail Use% Mounted on
/dev/sda2 20G 4.0G 15G 22% /
tmpfs 250M 260K 250M 1% /dev/shm
/dev/sda1 194M 24M 161M 13% /boot
/dev/sda3 4.9G 139M 4.5G 3% /home
/dev/mapper/rhel 492M 11M 457M 3% /rhel
如果希望在系统启动时自动挂载加密分区,需要做如下配置,
1.建立加密分区的密钥文件,如下图:
[root@server1 ~]# cat rhel_pass
123456
[root@server1 ~]# cryptsetup luksAddKey /dev/sda7 /root/rhel_pass
Enter any passphrase:
2.修改配置文件/etc/crypttab,如下图:
[root@server1 ~]# cat /etc/crypttab
rhel /dev/sda7 /root/rhel_pass
映射名 分区 密码文件位置
本文出自 “技术在于先知与后知” 博客,请务必保留此出处http://cslzy.blog.51cto.com/101859/617442
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- UI设计师产品构思过程中需要有一个系统思维方向
- 社会,更多是一种商业社会,以物易物,要适应商业社会,就需要以商业思维来思考(转)
- RedHat的RHEL5、Jboss3开源路需要继续创新
- 【智能零售】“未来零售”的九大思维,经营的你都需要知道
- 创新思维训练--蛋的思考
- 项目经理需要的思维批判
- 管理需要创新,培训必须落地
- 电子商务需要创新
- RedHat的RHEL5、Jboss3开源路需要继续创新
- SEO是一个需要营销策略与思维的高度整合性技术
- 【笔记】看"你的知识管理需要管理"有感, 补思维导图
- 项目经理需要的思维批判
- 张国祥老师昆明分享企业思维与创新管理
- 创新需要土壤
- 创新需要创新的气氛(环境)---转钱学森最后一次系统谈话:大学要有创新精神
- 个人职业提升需要跨越性思维
- RedHat的RHEL5、Jboss3开源路需要继续创新
- 思维拓展训练中的创新游戏设计
- SAAS软件模式需要创新——从阿里软件谈起