LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 05-02-2012, 09:29 AM   #1
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Rep: Reputation: Disabled
encrypted booting


hello everybody...iam new to linux programming....i hv to do the encrypted booting in linux......by the way what does encrypted booting means?
can anybody plzz help me regarding this topic...
 
Old 05-03-2012, 02:11 AM   #2
pan64
LQ Guru
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 9,905

Rep: Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921
encrypted booting means the boot process will ask for a password. Without this password you will not be able to find anything on the hard disk (no files, no dirs, no os, no partitions, it will look like just a huge amount of random data)
 
1 members found this post helpful.
Old 05-03-2012, 05:02 AM   #3
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
Talking

thankx... by the way how do we exactly do encryption of linux...i mean to say wat kind of program do we use in it...any site where i can find it???...
 
Old 05-03-2012, 05:36 AM   #4
pan64
LQ Guru
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 9,905

Rep: Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921
I think there are several possibilities. In our company we use Check Point EndPoint Security (but it is not free). It does not take care about the OS, this software encrypts the I/O access to the hard disk.
 
1 members found this post helpful.
Old 05-03-2012, 09:32 PM   #5
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
is der any other possibilities where i can get the encrypton of linux done...
 
Old 05-04-2012, 02:45 AM   #6
pan64
LQ Guru
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 9,905

Rep: Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921Reputation: 2921
just google
https://help.ubuntu.com/community/En...ilesystemHowto
http://www.goudkov.com/public/articl...partitions.jsp
http://www.howtoforge.com/how-to-enc...debian-squeeze
 
1 members found this post helpful.
Old 05-05-2012, 04:45 AM   #7
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
hey thnx so much...
 
Old 07-15-2012, 10:30 AM   #8
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
hi everybdy, i got one more problem..
i am trying to encrypt a whole partition through truecrypt and now i want to automount tht partition during reboot. During reboot it should ask for the key and automount that partition. i hv tried by changing the fstab file in /etc but its stil showing some error during reboot. i am not able to automount it during reboot......can anybody help me in this case????
 
Old 07-15-2012, 01:55 PM   #9
NyteOwl
Member
 
Registered: Aug 2008
Location: Nova Scotia, Canada
Distribution: Slackware, OpenBSD, others periodically
Posts: 512

Rep: Reputation: 139Reputation: 139
Well if you tell us the error we might be able to but that's pretty vague.

If you are trying to do full disk encryption (ie including the root partition) you can't using Truecrypt in Linux. You'll need to use LUKS or dm-crypt.
 
Old 07-18-2012, 03:32 AM   #10
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
thanx nyteowl.......i was able to encrypt the full hard disk using luks and dm-crypt....thanx a lot

now i am having an another problem...after encrypting i made a distribution of it...in the end i made its iso image and wrote it on a CD and tried to install in another system....aftr installation, its just starting like a normal operating system(its not asking for any passphrase or password in the beginning in the way i encrypted it initially).....how can it b done?
 
Old 08-31-2012, 05:51 AM   #11
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
how can a system be fully encrypted while the OS is being installed( ubuntu 11.10)...it should be like how an ubuntu 11.10 alternate installer works...how can the system hard disk can be encrypted while the OS is being installed?
 
Old 08-31-2012, 06:39 AM   #12
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 677Reputation: 677Reputation: 677Reputation: 677Reputation: 677Reputation: 677
It sounds like you had your encrypted filesystem decrypted and mounted, and created an image of the decrypted (/dev/dm-*) device(s) instead of the encrypted (/dev/sd*) device(s). Look in /dev/mapper/. There are symbolic links such as /dev/mapper/cr_sda2 -> /dev/dm-1. Here /dev/sda2 is encrypted. The kernel maps a decrypted device to /dev/dm-2, and this is the device that is mounted, and used during an installation.

I use LUKS at home. A previous post said that you needed LUKS to encrypt the entire partition, instead of TrueCrypt. This is backwards. You need an unencrypted /boot partition to be able to load the kernel including the parts which can decrypt the rest of the drive. Truecrypt uses it's own unstandard boot loader to enable full drive encrypting. I use LUKS because it allows me to decrypt a partition using cryptsetup without depending on a third party program.

The /boot partition is small, and you could easily create an image backup and save it on read-only media such as a CDROM or DVD-ROM. The /boot partition is also needed outside an LVM image and all RAID versions other than mirroring (RAID-1).

Last edited by jschiwal; 08-31-2012 at 06:42 AM.
 
Old 09-01-2012, 12:55 AM   #13
werewolf256
LQ Newbie
 
Registered: May 2012
Posts: 8

Original Poster
Rep: Reputation: Disabled
i was able to encrypt my system with LUKS by entering into an unencrypted partition...bt the prblem tht is occuring rite now is tht i am not able to customize this into a boot CD(the linux OS shud encrypt the entire hard disk while being installed into the system)...i have used REMASTERSYS bt its nt working....plzz suggest how shud i go abt it....thanku
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
(Advanced) Booting Ubuntu installed on HDD from encrypted USB stick or similar i00 Ubuntu 2 03-27-2011 10:18 AM
Booting from encrypted OS installed in USB nishanthame Linux - Security 2 01-25-2011 06:09 AM
(/bin/sh: can't access tty; job control turned off) Problem booting encrypted /root trapix22 Debian 0 10-25-2008 09:27 AM
encrypted IM? jbeiter Linux - Software 2 12-01-2004 03:41 PM
Encrypted FS? linuxtesting2 Linux - Security 4 04-05-2004 05:08 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 03:05 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration