diff --git a/helpers/DATA/ubiquity/encrypt_by_default.patch b/helpers/DATA/ubiquity/encrypt_by_default.patch
new file mode 100644
index 0000000000000000000000000000000000000000..470446983ed77fe62e494a7b3509310a3ce29138
--- /dev/null
+++ b/helpers/DATA/ubiquity/encrypt_by_default.patch
@@ -0,0 +1,12 @@
+diff -ru source.bak/ubiquity/plugins/ubi-partman.py source/ubiquity/plugins/ubi-partman.py
+--- source.bak/ubiquity/plugins/ubi-partman.py  2017-06-18 00:20:17.662208590 -0400
++++ source/ubiquity/plugins/ubi-partman.py      2017-06-18 15:35:21.718202038 -0400
+@@ -658,6 +658,8 @@
+                 opt_desc.show()
+                 opt_widget.set_label(options[option].title)
+                 opt_desc.set_markup(fmt % options[option].desc)
++                if name = "use_crypto":
++                    opt_widget.set_active(True)
+                 if not ticked and opt_widget.get_sensitive():
+                     opt_widget.set_active(True)
+                     ticked = True
diff --git a/helpers/make-ubiquity b/helpers/make-ubiquity
index d30cfec67708b14c181d62eb783670d02df688cb..29a20a590cd5a5fd89dfa7e76628070eda8b0dd7 100644
--- a/helpers/make-ubiquity
+++ b/helpers/make-ubiquity
@@ -1,6 +1,6 @@
 #!/bin/sh
 #
-#    Copyright (C) 2011-2016  Ruben Rodriguez <ruben@trisquel.info>
+#    Copyright (C) 2011-2017  Ruben Rodriguez <ruben@trisquel.info>
 #
 #    This program is free software; you can redistribute it and/or modify
 #    it under the terms of the GNU General Public License as published by
@@ -17,10 +17,12 @@
 #    Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
 #
 
-VERSION=3
+VERSION=4
 
 . ./config
 
+patch -p1 < $DATA/encrypt_by_default.patch
+
 cp $DATA/trisquel_installed.png pixmaps
 rm pixmaps/ubuntu_installed.png
 replace ubuntu_installed trisquel_installed .
@@ -220,22 +222,6 @@ then
     chown root:admin /target/etc/italc/keys/private/*/key
 fi
 
-cat << EOF > /target/etc/grub.d/01_PASSWORD
-#! /bin/sh -e
-# As a security measure Trisquel sets a password for GRUB during install.
-# It prevents unauthorized users from gaining root through the boot manager.
-# You can still edit GRUB entries by entering "grub" as user and the password
-# set below in this file. This file should only be readable by root.
-#
-# To disable the password, Comment or remove this file and run this command:
-# sudo update-grub2
-
-echo set superusers=grub
-echo password grub \$(bash -c 'echo \$RANDOM')
-EOF
-
-chmod 700 /target/etc/grub.d/01_PASSWORD
-
 # Hacks for accessibility
 if pgrep orca > /dev/null
 then