5,337
edits
Line 572: | Line 572: | ||
* <code>ssh</code> will not work until home has been decrypted since the authorized keys are in <code>~/.ssh/authorized_keys</code> | * <code>ssh</code> will not work until home has been decrypted since the authorized keys are in <code>~/.ssh/authorized_keys</code> | ||
** One workaround is as follows: | ** One workaround is as follows: | ||
**# Move ssh keys elsewhere such as <code>/etc/ssh/authorized_keys/<user></code> | **# Move ssh keys elsewhere such as <code>/etc/ssh/authorized_keys/<user></code>. Add <code>/etc/ssh/authorized_keys/%u | ||
</code> to the <code>AuthorizedKeysFile</code> line in <code>/etc/ssh/sshd_config</code>. | |||
**# Create a sudo user with and unencrypted home directory. | **# Create a sudo user with and unencrypted home directory. | ||
**# After every restart, ssh into the unencrypted sudo user and decrypt your home directory: | **# After every restart, ssh into the unencrypted sudo user and decrypt your home directory: | ||
**#:<code>sudo fscrypt unlock /home/david --user=david</code> | **#:<code>sudo fscrypt unlock /home/david --user=david</code> | ||
**# Then ssh into your account. | **# Then ssh into your account. |