Score:0

Ubuntu

Dual boot encrypted Ubuntu

GZZ

4/26/24, 7:37 AM

I would like to create a Ubuntu/Ubuntu (23.04) dual boot system (one personal and the other for work) where both distributions are encrypted. I would also like to have a shared partition for common data/apps.

I found many tutorial on how to achieve this with a windows/Ubuntu system, however I could not find any specific to Ubuntu/Ubuntu.

Any one help on this?

146

1 + 7

encryption

partitioning

dual-boot

GZZ

4/26/24, 8:45 AM

With the GUI you can create an Ubuntu installation that takes the entire drive. In order to create a dual boot, you would need to setup the partitions/volume groups etc manually. I was wondering if there is any documentation I can refer to, or general steps I need to follow

Nmath

4/26/24, 8:50 AM

OK I understand. I've actually written an answer that covers exactly that See: [How do I install Ubuntu with full disk encryption without having to "erase everything"?](https://askubuntu.com/questions/1246401/how-do-i-install-ubuntu-with-full-disk-encryption-without-having-to-erase-every) Let me know if you have questions or encounter snags. The example uses Windows as the preexisting operating system but that doesn't matter.

Nmath

4/26/24, 8:58 AM

In short, you need to create a LUKS encrypted partition for `/` and an unencrypted `/boot` partition. You need to flag each of those as such. Then define where your system's EFI partition is located.

GZZ

4/26/24, 9:00 AM

Would it be possible to also have the `boot` partition encrypted?

Nmath

4/26/24, 9:08 AM

I'm not sure to be honest but I also can't see how it would be necessary unless you have a very unique threat model. It only contains the kernel, kernel modules, and boot instructions. No personal files or even cache/swap that you could sniff to infer other data on your system. Also, EFI can't be encrypted.

Nmath

4/26/24, 9:10 AM

As far as a shared data partition you can set up an additional LUKS partition during manual partitioning. Or you can do it before you install the system(s) or after -- using your disk partitioning tool of choice (like gnome disk utility)

user535733

4/26/24, 11:34 AM

Seems like it would be much simpler to use (and maintain) a VM on a normal encrypted system than encrypted-dual-boot. A shared data partition between home/work systems is a red flag suggesting that the two aren't really completely separate. which also suggests a VM might be usful. The desire for encrypted /boot is puzzling, suggesting that you have requirements as yet undisclosed in the question. You will get the best advice if your question is complete.

Score:0

Ubuntu

Satyam Singh Virat

4/26/24, 10:07 AM

I am not sure if a shared partition is even possible or not. Although you can create encrypted boots while installing your Linux Distro. In the 'Partition disks' window during installing your Ubuntu(or any other distro), you are given few options such as-

Guided- use the largest free space
Guided- use entire disk
Guided- use entire disk and set up LVM
Guided- use entire disk and set up encrypted LVM
Manual

Choose the option with 'encrypted LVM' and that should do the work for you.

+ 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Dual boot encrypted Ubuntu

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.