Silk Road forums
Discussion => Security => Topic started by: homersimpson on June 08, 2012, 03:33 pm
-
Please can someone link me to a thread/tutorial on how to install Liberte and create a liveUSB on a partitioned/enctypted USB?
I run the liberte installer in my hidden usb layer then restart my laptop so that I can run the operating system I get a message telling me to remove the media and press any key to restart.
Is it that hard to ask to have the advantages of both liberte linux and an encrypted/hidden usb :(
I used TrueCrypt also.
Thanks :)
-
the instructions are on the liberte website.
reformat your usb stick and start over.
seems liberte makes a seperate encrypted volume for you, just make/enter password
http://dee.su/liberte-documentation
-
You shouldn't be using TrueCrypt with any version of Linux. Even normal Ubuntu gives you the option during install to encrypt the entire hard drive (Full Disk Encryption):
http://www.linuxbsdos.com/2011/05/09/home-directory-and-full-disk-encryption-in-ubuntu-11-04/
Liberte has this too:
http://dee.su/liberte-documentation
Encrypted Volume
Picking a secure password for the encrypted volume is extremely important, since all user's persistent data is kept on this virtual partition, accessible via ~/persist directory. Do not take the various security “experts” (typically, trained system administration monkeys) too seriously, and consider writing the (long) passphrase down on something that is secured and that you will not carry with the boot media.
You should make regular backups of the .vol file in the otfe directory (the volume header is already backed up in the same directory). Erasing the .vol file is equivalent to making a fresh install of Liberté Linux. Alternatively, upgrading Liberté does not affect the encrypted volume, and is backward-compatible with the volume contents.
Removing settings/config.tar.xz on the volume resets the user configuration in ~/config — remove the file and pull out the USB stick after pressing Win-S to achieve that. Adding nosettings to the boot options temporarily inhibits extraction and saving of user configuration. Note that important data such as cables identity and mailboxes / message queues, hashed passwords, encryption keys, etc. is stored directly in ~/persist, and should not be affected when user configuration is removed. Configuration exclusion patterns can be customized in ~/config/persist.excludes.
The volume can be transparently resized by running sudo otfe-resize in a terminal.
It is on by default 8)
And from their forum:
http://forum.dee.su/topic/live-os-on-a-usb-flash-drive
Liberté Linux typically writes very little on the USB flash drive in the course of normal use. User's configuration changes are only saved to the encrypted virtual volume upon shutdown (as a small archive). That volume is also used for cables communication, but high frequency of cables is also unlikely. And, of course, anything the user explicitly saves to the encrypted volume (~/persist), or directly to the flash drive (/mnt/boot), is also written through.
Note the "User's configuration changes are only saved to the encrypted virtual volume upon shutdown (as a small archive)"
So you're already safe buddy :)