LUKS setup with encrypted /boot partition / solutions available?

The common setup layout of a LUKS protected workstation, is to encrypt “/” (root-partition)
and leave /boot unencrypted - to be able to load the initrd. I wonder if the current state of
grub (and friends in fedora (dracut, systemd etc)) allows to boot the system full encrypted
(standard scenario with UEFI…)? Any experiences out there …?

1 Like

Encrypting More: /boot Joins The Party - A Random Walk Down Tech Street from 2015. Worth checking if anything has further been improved since then…

1 Like