LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-11-2014, 01:11 PM   #1
kulfon
LQ Newbie
 
Registered: Aug 2014
Posts: 5

Rep: Reputation: Disabled
Question Just another encryption problem


Hello linux community.
My problem isn't notching challenging I believe but after four days of searching and trying how to recover data I'm in the same place.
From the beginning. In my first ssd drive I have W7, on another hdd 1TB data (ntfs) and on 160Gb connected with USB is (was?) MINT 17 encrypted with LUKS. Unfortunately I can't remember that I encrypted whole partition or only /home catalog. Four days ago I was trying to install crunchbang on USB pendrive and when installator ask to save partitions setup I chose default with was pendrive. After that on new system grub there was only crunchbang and W7 OS to chose without MINT because hdd with MINT was disconnected during debian installation. So, assuming. All I need is recover/repair mint system or at least /home catalog. Maybe it's possible to fix GRUB/GPT??
I was trying with
http://alvinabad.wordpress.com/2012/...ncrypted-disk/ but I stuck on
Quote:
cryptsetup -v luksOpen /dev/sda5 sda5_crypt
I can't use commands like
Code:
lvdisplay, vgchange,
Some info

Code:
fdisk -l

Disk /dev/sda: 120.0 GB, 120034123776 bytes
255 heads, 63 sectors/track, 14593 cylinders, total 234441648 sectors
Units = sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x16b5d5a7

   Device Boot      Start         End      Blocks   Id  System
/dev/sda1   *        2048      206847      102400    7  HPFS/NTFS/exFAT
/dev/sda2          206848   234438655   117115904    7  HPFS/NTFS/exFAT

Disk /dev/sdb: 1000.2 GB, 1000204886016 bytes
255 heads, 63 sectors/track, 121601 cylinders, total 1953525168 sectors
Units = sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x000d4981

   Device Boot      Start         End      Blocks   Id  System
/dev/sdb1              63   614405924   307202931    7  HPFS/NTFS/exFAT
/dev/sdb2       614405925  1281778154   333686115    7  HPFS/NTFS/exFAT
/dev/sdb3      1281778155  1953520064   335870955    7  HPFS/NTFS/exFAT

WARNING: GPT (GUID Partition Table) detected on '/dev/sdc'! The util fdisk doesn't support GPT. Use GNU Parted.


Disk /dev/sdc: 160.0 GB, 160041885696 bytes
255 heads, 63 sectors/track, 19457 cylinders, total 312581808 sectors
Units = sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00000000

   Device Boot      Start         End      Blocks   Id  System
/dev/sdc1   *           1   312581807   156290903+  ee  GPT

Disk /dev/sdd: 16.0 GB, 16027484160 bytes
255 heads, 63 sectors/track, 1948 cylinders, total 31303680 sectors
Units = sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00054760

   Device Boot      Start         End      Blocks   Id  System
/dev/sdd1            2048    29927423    14962688   83  Linux
/dev/sdd2        29929470    31301631      686081    5  Extended
/dev/sdd5        29929472    31301631      686080   82  Linux swap / Solaris

Disk /dev/mapper/udisks-luks-uuid---------------------------------------------: 159.3 GB, 159271354368 bytes
255 heads, 63 sectors/track, 19363 cylinders, total 311076864 sectors
Units = sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00000000

Disk /dev/mapper/udisks-luks-uuid--------------------------------- doesn't contain a valid partition table
Maybe some advice or links please?? I appreciate any help.
Thx.
 
Old 08-12-2014, 02:41 PM   #2
kilgoretrout
Senior Member
 
Registered: Oct 2003
Posts: 2,988

Rep: Reputation: 388Reputation: 388Reputation: 388Reputation: 388
You are following that excellent HowTo a little to literally. From what you describe and the fdisk output, Mint is probably installed on a single partition, sdc1. That's the only partition listed on the 160GB drive. To test if this is a LUKS encrypted partition you should run as root:

# cryptsetup -v luksDump /dev/sdc1

Try it and see what output you get.
 
Old 08-12-2014, 03:27 PM   #3
kulfon
LQ Newbie
 
Registered: Aug 2014
Posts: 5

Original Poster
Rep: Reputation: Disabled
Thx for reply.
I forget to paste before what I got from # cryptsetup -v luksDump /dev/sdc3
With /dev/sdc1 and sdc2 i get "its not a proper LUKS device" (it should be sounds smth like that in a translation from my language)

Code:
LUKS header information for /dev/sdc3

Version:       	1
Cipher name:   	aes
Cipher mode:   	xts-plain64
Hash spec:     	sha1
Payload offset:	4096
MK bits:       	512
MK digest:     	d1 d2 51 a3 12 d3 12 74 c5 b4 3b 8e 5b 62 2a 1e ab 09 0e c5 
MK salt:       	37 3f 47 cf 8b 0e b8 7e 90 5d 2d 4f 39 35 1d 36 
               	17 b2 77 fe 21 95 f6 2b 82 4c 5a b4 74 d8 93 5c 
MK iterations: 	63875
UUID:          	---------------------------------------
Key Slot 0: ENABLED
	Iterations:         	255813
	Salt:               	e8 97 60 93 da 7c bd 77 7b 8a 6e 22 9a 4a a8 ed 
	                      	ff 62 e5 11 83 bf b6 98 00 84 6c aa 81 40 cd e7 
	Key material offset:	8
	AF stripes:            	4000
Key Slot 1: DISABLED
Key Slot 2: DISABLED
Key Slot 3: DISABLED
Key Slot 4: DISABLED
Key Slot 5: DISABLED
Key Slot 6: DISABLED
Key Slot 7: DISABLED
 
Old 08-12-2014, 05:23 PM   #4
kilgoretrout
Senior Member
 
Registered: Oct 2003
Posts: 2,988

Rep: Reputation: 388Reputation: 388Reputation: 388Reputation: 388
That's great. You've identified the encrypted partition as sdc3. Apparently, fdisk couldn't make sense out of your GPT partition structure on the 160GB sdc drive.

From here you should run the following:

# cryptsetup luksOpen /dev/sc3 enc-disk

You will be prompted to enter your LUKS password. Do so when prompted and you should get output something like this indicating you were successful:

key slot 0 unlocked.
Command successful.

That unlocks the partition; now you have to mount it. Create a mount point directory in /media called "enc-disk"

# mkdir /media/enc-disk

And finally, mount the encrypted partition on /media/enc-disk:

# mount /dev/mapper/enc-disk /media/enc-disk

That's it. If everything went OK, if you navigate to /media/enc-disk you should see the contents of your encrypted sdc3 partition.

When your done, unmount the encrypted partition and close it with:

# umount /media/enc-disk
# cryptsetup luksClose enc-disk
 
Old 08-13-2014, 02:14 PM   #5
kulfon
LQ Newbie
 
Registered: Aug 2014
Posts: 5

Original Poster
Rep: Reputation: Disabled
After
Code:
# cryptsetup luksOpen /dev/sdc3 enc-disk
as a root i got
Code:
key slot 0 unlocked. Command successful
but after creating directory and type
Code:
# mount /dev/mapper/enc-disk /media/enc-disk
i got
Code:
mount: special device /dev/mapper/enc-disk does not exist
Any idea? I losing hope :/

P.S. Why I can't get access to hdd through file manager after entering password in terminal??

Last edited by kulfon; 08-13-2014 at 02:37 PM.
 
Old 08-13-2014, 09:27 PM   #6
kilgoretrout
Senior Member
 
Registered: Oct 2003
Posts: 2,988

Rep: Reputation: 388Reputation: 388Reputation: 388Reputation: 388
What files are in /dev/mapper?

You can check unlocking the partition with luksOpen again:

# cryptsetup luksOpen /dev/sdc3

Enter the password when prompted. After getting a successful response, run:

# ls /dev/mapper

Also, just to make sure you have the right modules loaded, post the output of:

# lsmod | grep dm-crypt

The dm-crypt module must be loaded for this to work. sdc3 is probably being mapped to some other device file in /dev/mapper than "enc-disk". The original setup may have mapped it to /dev/mapper/home or something like that. Since you successfully unlocked the partition, it must be mapped somewhere in /dev/mapper. Once you know where, you can mount the partition through that device file in /dev/mapper.

Last edited by kilgoretrout; 08-13-2014 at 09:53 PM.
 
Old 08-14-2014, 06:29 AM   #7
kulfon
LQ Newbie
 
Registered: Aug 2014
Posts: 5

Original Poster
Rep: Reputation: Disabled
So lets move on.
First I type # sudo cryptsetup luksOpen /dev/sdc3 sdc3_crypt and then I've to enter password. Pass is correct and then # ls /dev/mapper witch shows me two files: control sdc3_crypt. And then I type # lsmod | grep dm-crypt, nothing happens (or probably everything is correct and something happens in background), so I type # mount /dev/mapper/sdc3_crypt /media/enc-disk and i get an information # mount: unknown filesystem type 'LVM2_member. How can I check that dm-crypt module is loaded?
 
Old 08-14-2014, 10:25 AM   #8
kilgoretrout
Senior Member
 
Registered: Oct 2003
Posts: 2,988

Rep: Reputation: 388Reputation: 388Reputation: 388Reputation: 388
The encryption module is loaded or you wouldn't get as far as you did. It's probably called "dm_crypt" instead of "dm-crypt". There are slight variations in the module naming conventions with different kernels and distros. To check:

# lsmod | grep crypt

which will list all loaded modules with "crypt" in their name.

The mount error reveals that you do not have a standard encrypted single partition but setup LVM which I normally wouldn't use for a home desktop. I'll have to research how to get at an encrypted LVM volume but I'm sure it's doable.

Edit:
I'm following this guide and trying to adapt it to your situation:

http://blog.nowherelan.com/2011/04/1...lvm-partition/

First thing, you have to make sure the LVM package "lvm2" is installed. Install it with:

# apt-get install lvm2

If it's already installed, no harm done.

Next, you run:

# vgscan

Post the output you get when you run this command. What you do next will depend on that output.

Last edited by kilgoretrout; 08-14-2014 at 10:54 AM.
 
Old 08-16-2014, 06:40 AM   #9
kulfon
LQ Newbie
 
Registered: Aug 2014
Posts: 5

Original Poster
Rep: Reputation: Disabled
After # vgscan terminal shows
Code:
Reading all physical volumes.  This may take a while...
  Found volume group "mint-vg" using metadata type lvm2
I tried accomplish with http://blog.nowherelan.com/2011/04/1...lvm-partition/ and after all I have access to mint system partition but /home catalog is still encrypted and I can't read it.

crunchbang@crunchbang:~$ ls /mnt/mint/home/piekar
Access-Your-Private-Data.desktop README.txt

Last edited by kulfon; 08-17-2014 at 10:38 AM.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Encryption problem on Ubuntu 8.04 DexterP Linux - Wireless Networking 2 07-06-2008 07:28 AM
Encryption problem with gnome Tailer Linux - Software 0 08-24-2007 04:57 PM
Linux password encryption and data encryption Tux-Slack Programming 4 06-20-2007 06:46 AM
web encryption problem bruno_123 Linux - Wireless Networking 4 12-23-2003 04:20 PM
Mandrake 9.0 Wireless Works without encryption.. does not with encryption topcat Linux - Wireless Networking 3 05-04-2003 08:47 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 08:12 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration