2
2
I have a computer dual-booting Windows 7 and Arch Linux. The Arch installation has already been encrypted with LUKS and LVM, as follows:
sda Computer's Hard Drive, GRUB2 in MBR
| sda1 Preinstalled, ignorable partition
| sda2 Preinstalled, ignorable partition
| sda3 Windows 7
| sda4 Extended partition
| | sda5 Arch - LUKS Encrypted Container
| | | archcrypt LVM Container
| | | | arch-root Arch /
| | | | arch-swap Arch swap
| | sda6 Arch - unencrypted /boot
I believe that everything under the LUKS container is ignorable, as everything works right now. I would like to encrypt the Win7 partition as well, using TrueCrypt. How would I go about this? Is it OK to install GRUB2 into a partition's boot sector? What configuration changes would I need to make to GRUB2 to work with the new setup?
To clarify, sda1 is a ~ 40 MiB fat16 partition. The BIOS probably uses it or something. sda2 is ~20 GiB (!) and is labelled RECOVERY. Also, do you know if it would be easier to install GRUB to the boot sector of sda6 (is it safe, can it be done, will Truecrypt chainload it, etc.)? – thirtythreeforty – 2013-01-31T07:49:09.093