© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Currently we try to ask partitioning questions as soon as possible such that we can do partitioning & installation in parallel with users fiddling with the webcam to take a perfect shot for their user profile and things like that.
Now with newly added cryptsetup, we need a pass-phrase to create a container to create the partitions and start installation. We ask user's keyboard layout after we already started installation and recorded passphrase in the LUKS slot.
Ideally we want to use correct layout for password, yet setup keyboard layout during installation
Option one:
- generate random encryption password
- start the install
- proceed to user setup
- ask for keyboard layout
- setup up the real passphrase slot
- optionally remove the random encryption passphrase
- possibly pre-seed other passphrases (e.g. company wide)
- in OEM mode allow to skip setting up the user passphrase and setup the random one as a keyfile in the initramfs, to allow users to set their own passphrase on first boot (there are some security implications with this)
Option two:
- if encryption was selected, move the keyboard layout step before setting up the passphrases
Option three:
- display the passphrase in clear text such that users are aware of this