i see, so the file names are: autostart_blocking.sh and autostart.sh

I dont need to create a weird file name like: autostart.sh &

But, whichever command I put in autostart.sh will run as if I run in terminal with the & sign. E.g: dunst & to run in the background.

yes, that is what I thought: so “dunst &” means to start dunst in the background. But the way they attach to the end of a file name is weird.

hows the search fuction in mutt? For eg, if i want to search an email thread from like 3 months ago, does it function well or do I need to open my broswer…

Well thanks everyone. I finally managed to get it to work on Arch. System has separate encrypted root and swap in LVM, and a separate encrypted home. It can suspend and hibernate. Below are my steps

DISK PREP

• partition the main drive for your swap and root first. For me, it is a boot partition + an EFI + a LUKS container with LVM on top. Create your volumes. I use Arch, so format and mount them appropriately before pacstrap. Leave out mount point for /home.

• Go to your other drive, follow: https://www.cyberciti.biz/hardware/cryptsetup-add-enable-luks-disk-encryption-keyfile-linux/

to create a LUKS container that is encrypted with: a keyfile and a password. Test both to make sure you can open the locked drive. Format and mount it at /mnt/home or where you want the /home to be.

• Pacstrap and then genfstab.
  Important: Make sure to copy the keyfile from your archiso environment to your chroot environment aka your system. Otherwise, when reboot, the keyfile is gone. I put it in /root and set permission so only root can read.

AUTOMATIC UNLOCK

• First, fstab. When you do genfstab, things should be fine. But just double check the UUID is correct for /home. Note in fstab, the UUID is the unlocked one: so the one with /dev/mapper/home. Change to noatime if you desire.

• Second, crypttab. Assume you decrypt your LUKS home as “home”. Add this:

home uuid of the unencrypted home drive location of the keyfile luks

The link above said to just use /dev/sda, but imo UUID is safer if you have a removable drive.

• Third, grub. Edit your /etc/default/grub and append the following to GRUB_CMD_LINUX:

“rd.luks.uuid=UUID of the locked luks home drive”

FOR HIBERNATION

For some reasons, hibernation doesnt work out of the box. It works when I have everything in 1 drive, i.e 1 boot, 1 efi, 1 lvm on luks for /home, swap and /. The fix is simple:

• add “resume” to /etc/mkinitcpio.conf. Add before “filesystems” . Rebuild your initramfs with mkinitcpio -P.

• add to /etc/default/grub: “resume= uuid of the unlocked swap partition”. Or if you do LVM, just use “resume=/dev/vg/swap”.

Special thanks to bodaciousFern@lemmy.dbzer0.com and Lemmchen@feddit.org for giving me correct ideas about “rd.luks.uuid” and that LUKS can do both pass and keyfile.