| View previous topic :: View next topic |
| Author |
Message |
DesertFox
n00b
Joined: 14 Nov 2002
Posts: 53
|
 Posted: Mon Aug 11, 2003 6:21 am Post subject: Encrypted ISO's (CD's) |
 |
|
This is kinda a followup I made to the Encrypted Root File System Tread https://forums.gentoo.org/viewtopic.php?t=31363 and assumes that you have followed the first part of that guide at least, and have the loopback device module working, as well as having installed the newest util-linux things that the article talks about (like losetup, mount, umount), as well as being able to burn a cd.
Also, this is my first guide, so message me to let me know if I need to change anything (huge gramatical errors, too many quote bars, stuff like that)
This began from my nervousness of having my encrypted root die, leaving me with nothing (what's the point in backing up sensitive data in an unencrypted format?), so here it goes. 
For me, when I make a ISO, I like to move all of the files for a cd into a single directory (makes it so I don't have to think as hard). For this example, lets say the directory will be ~/encrypt/iso
| Code: | cp whatever ~/encrypt/iso/
cd ~/encrypt/ |
Test the size of of the ISO (using whatever options you want):
| Code: | | mkisofs -r -o /dev/null iso/ |
There will be some output the end of mkisofs which should look something like this:
| Quote: | | 3143 extents written (6 Mb) |
*The "3143" will be the count for the next command.
Make An Empty ISO:
| Code: | | dd if=/dev/zero of=encrypted.iso bs=2k count=3143 |
(or whatever size your's was)
Encrypt It:
| Code: | | losetup -e AES256 -T -C 100 /dev/loop0 encrypted.iso |
(Enter and Remember Your Pass)
Create The Actual Info In the ISO:
| Code: | mkisofs -r -o /dev/loop0 iso/
losetup -d /dev/loop0 |
Check To Make Sure Everything Went Right:
| Code: | mkdir /mnt/encrypted/
mount encrypted.iso /mnt/encrypted/ -o loop -o encryption=AES256 -o itercountk=100 |
Burn the CD however you want to then create an extra folder in /mnt/ and add a line to your /etc/fstab something like this:
| Code: | | /dev/cdroms/cdrom0 /mnt/encrypted iso9660 defaults,noauto,loop=/dev/loop0,encryption=AES256,itercountk=100 0 0 |
Then, each time you want to mount the data, you just have to run | Code: | | mount /mnt/encrypted/ |
Now all of you who have an encrypted root can back up all that data without risk. 
Last edited by DesertFox on Mon Aug 11, 2003 4:05 pm; edited 1 time in total |
|
| Back to top |
|
 |
Garbz
Apprentice
Joined: 02 Jul 2003
Posts: 260
Location: Brisbane, Australia
|
| Posted: Mon Aug 11, 2003 8:06 am Post subject: |
|
|
now that's handy if i ever get raided by the fbi. Even my cds would be useless to them
_________________
Every begining is another begining's end. |
|
| Back to top |
|
|
DesertFox
n00b
Joined: 14 Nov 2002
Posts: 53
|
| Posted: Mon Aug 11, 2003 4:07 pm Post subject: |
|
|
| aye, t'would |
|
| Back to top |
|
|
rojaro
l33t
Joined: 06 May 2002
Posts: 732
|
| Posted: Mon Aug 11, 2003 11:56 pm Post subject: |
|
|
first rule in the book ... install a keysniffer into the keyboard and wait like 30 days ... then raid.
_________________
A mathematician is a machine for turning coffee into theorems. ~ Alfred Renyi (*1921 - †1970) |
|
| Back to top |
|
|
viperlin
Veteran
Joined: 15 Apr 2003
Posts: 1319
Location: UK
|
| Posted: Tue Aug 12, 2003 12:18 am Post subject: |
|
|
thats why i allways check the back of the PC in an internet cafe or something for anything like this on the back.
and i'm going to give this a go, lets hope i get no coasters |
|
| Back to top |
|
|
DesertFox
n00b
Joined: 14 Nov 2002
Posts: 53
|
| Posted: Tue Aug 12, 2003 5:54 am Post subject: |
|
|
I haven't gotten any coasters yet (with cdrecord), after all, it is a mountable ISO. but yeah, those keyboard loggers kinda ruin the whole point
only thing i have noticed is that the dd command really sucks up physical ram . . . |
|
| Back to top |
|
|
viperlin
Veteran
Joined: 15 Apr 2003
Posts: 1319
Location: UK
|
| Posted: Tue Aug 12, 2003 3:35 pm Post subject: |
|
|
sadly cdrecord stopped woring for me, my ide-scsi module errors on scsi_mod.o but i don't know why, maybe i'm missing an option or something.
anyway xcdroast still works a bit but it's turning out coasters a lot since i keep getting that error.
but the iso mounts perfectly so when i find the result i can do a real backup of my unmentionable data, thanks for making the tutorial simple, the original tutorial never worked for me. |
|
| Back to top |
|
|
Garbz
Apprentice
Joined: 02 Jul 2003
Posts: 260
Location: Brisbane, Australia
|
| Posted: Wed Aug 13, 2003 1:02 am Post subject: |
|
|
not like coasters matter anymore at $0.40 AUD  I remember a time when cds were $5.00 AUD.
_________________
Every begining is another begining's end. |
|
| Back to top |
|
|
|
Documentation, Tips & Tricks
