(keith.github.io)

507 points ingve | 1 comments | 18 Sep 25 20:15 UTC | HN request time: 0.201s | source

Show context

sugarpimpdorsey ◴[18 Sep 25 20:39 UTC] No.45294739[source]▶

Maybe stop using Macs as multiuser servers?

Unavailability of FileVault-mounted home directories when not logged in has been the case since Tiger.

I'm curious - if the OpenSSH config files are not available - how do they start sshd? If the system keys are encrypted, how do they accept connections?

There's a surprising lack of detail here.

replies(4): >>45294817 #>>45294905 #>>45294943 #>>45301003 #

1. SXX ◴[19 Sep 25 12:40 UTC] No.45301003[source]▶

>>45294739 #

> Unavailability of FileVault-mounted home directories when not logged in has been the case since Tiger.

Since release of M1 now whole data partition is encrypted with single key and not home directories. And likely there no way at all to encrypt home directories with separate keys on modern macOS.

↑

Apple: SSH and FileVault