I tried added a key file and even a password txt but both lead to it still asking for me to type in the password.
Is it because the drive is encrypted? I tried placing the files at /, /boot, /root, /etc
Edit1: I’ve tried to install dropbear and give it ssh keys. I will try to reboot in the morning and see what happens
Edit2: signing in via ssh just says port 22 rejected not working :(
Edit3: neither dropbear for ssh or keyfile worked. I give up.
Interesting thoughts in this thread.
I simply switched to having an unencrypted boot partition with the automount key on a flash drive. After it boots the server, just remove the whole boot partition. Physical separation is much much more powerful for smash and grabs, petty seizures, and evil maid than TPMs.
The flash drive is stored securely when I am in the area. Flash drive can go in the machine if I am away for a while or have something critical.
I go a step further and have password-only data drive description so I have to ssh in to set up the data drives again, but the principle would be the same.
Yes, that is why I see little value in a TPM for this sort of thing. That is at least for motherboard attached TPMs.