Prevent FileVault volume from mounting in Lion

Thought I would update this thread in case it comes up in Google with High Sierra release:

Now that FileVault in High Sierra converts volumes to encrypted APFS volumes, this trick won't work.. any idea about which Daemons to move/hide to prevent unlock message for the APFS volumes?

I'm not sure I understand the question. If you want the volume to mount without prompting for a password, store the password in your Keychain.

When you enter the password, does the volume mount despite the fstab entry?

Try putting that UUID in the fstab file.

Any progress on this matter? Did 10.7.1 change anything?

lion 7.2 for me here, and i figured it out.

they have a file called fstab.hd, but there's a note in there that says they don't use it anymore.

what you have to do is make a file called just 'fstab' in your etc directory

so the first thing you do is find your partition's Unique Universal Identifier (UUID.) Do this by opening the disk utility, then clicking on the partition in question first, then info. The UUID should be labeled there. Simply copy it.

go to terminal, type in

sudo nano /etc/fstab

you should see a blank file.

type this in:

UUID=(your UUID) none (your file system type) rw,noauto

this is an example of what it would look like for a filesystem that is hfs (a mac journaled file system)

UUID=8BCD6347-4CR5-32A7-A3FB-8H35281DB30E none hfs rw,noauto

so if yours is a mac filesystem, that's all you have to type in your fstab file.

in nano, hit CTRL+O to save (write out) the new file. Then CTRL+X to exit. if it doesn't save, make sure you typed in 'sudo' before choosing the file.

notes:

if you have a separate file system other than the mac filesystem, you have to research what type of file system you have to type in place of "hfs". for example, if you're running an ntfs partition, you would type in "ntfs" instead of hfs.

Bottom line. fstab is not currently in osx lion, but if you make one there, it will work in not mounting your drives when you start. You can of course still mount the drive via disk utility and have the full function if you want to.

Actually:

UUID=8BCD6347-4CR5-32A7-A3FB-8H35281DB30E none hfs rw,noauto

is incorrect, it misses two fields.

It should be:

UUID=8BCD6347-4CR5-32A7-A3FB-8H35281DB30E none hfs rw,noauto 0 0

The two '0' (zero's the cipher, not capital o) aren't trivial.

Basically an fstab entry has the following fields:

1. Device identifier (device file or UUID or LABEL)
2. Mount point
3. Filesystem type (e.g. hfs, vfs,nfs,ntfs)
4. Options (rw means read and write, ro means read only, noauto means don't mount automatically, nouser means only superuser can mount device. There are more options, usually depending on the fstype)
5. Indicates whether the fs needs to be dumped (0=no, any other number means yes)
6. Indicates whether the fs needs to be checked at boot time (0=no)

Although the man page for fstab implies that fields 5 and 6 can be omitted, they can't.

Message was edited by: jasper kips

I'm having the same issue and I haven't found anything that will stop it from automounting. I've actually found 6 different UUIDs for this disk depending on where you look (DiskUtility GUI, diskutil corestorage info, etc), and I have them all in my fstab but nothing's working for me either.

OK, found a solution, sorta, but please note that I have two self-contained Lion installs on the same HDD, one FV2, the other unencrypted. If you just have separate System & User partitions, this is probably no use to you...

In the non-FV2 system, Go to /System/Library/CoreServices/SecurityAgentPlugins/

and remove the item DiskUnlock.bundle i.e. take it from that folder and store it somewhere safe, in case you need to add it back.

Restart et voila. No more prompting.

I've since created a test DMG encrypted with Disk Utility and can still unlock that, so the bundle seems to be for hardware only, but YMMV...

I've also flagged the "Disk Unlock" prompt to Apple Security as a potential security flaw/bug. Others in need of a more refined solution may wish to do the same.