Porteus

Porteus User Forum
https://forum.porteus.org/

LUKS Encrypted Porteus?

https://forum.porteus.org/viewtopic.php?f=81&t=4165

Page 1 of 1

LUKS Encrypted Porteus?

Posted: 23 Dec 2014, 08:17
by Mario
I have been pondering the thought of a LUKS encrypted USB install of Porteus. However I can't find any information on how possible it is or how to do it or of any viable alternatives. I created a forum account specifically for this.

My idea is to have everything except a boot partition on the USB stick encrypted and requiring a password to decrypt before it even boots. I would accept an alternative of "encrypted save file" but would much prefer the whole thing encrypted except for the boot partition of course.

Has this been done? Has this been discussed? Is it even possible? Anyone interested in such?

Thank you.

Re: LUKS Encrypted Porteus?

Posted: 23 Dec 2014, 09:37
by fanthom
hi Mario,

there is no point for full encryption - encrypt save.dat instead and keep all your personal stuff there. if you want to hide some programs then also use save.dat for them. in case of slackware packages you will have to use 'installpkg *.txz' instead of modules and job done.

this approach is better as:
a) core is not encrypted -> system works faster
b) you can decide which programs should be encrypted (everything what goes to save.dat) and which dont have to (everything what goes as a module to /porteus/modules).

Re: LUKS Encrypted Porteus?

Posted: 23 Dec 2014, 17:28
by Mario
fanthom wrote:hi Mario,

there is no point for full encryption - encrypt save.dat instead and keep all your personal stuff there. if you want to hide some programs then also use save.dat for them. in case of slackware packages you will have to use 'installpkg *.txz' instead of modules and job done.

this approach is better as:
a) core is not encrypted -> system works faster
b) you can decide which programs should be encrypted (everything what goes to save.dat) and which dont have to (everything what goes as a module to /porteus/modules).
Seems a little noobish but: Is there a way to create this save.dat and have it encrypted automatically? What algorithm is used? I haven't used Porteus in "awhile" but last time I used it it seemed to save all changes to a folder by default.

Re: LUKS Encrypted Porteus?

Posted: 23 Dec 2014, 22:07
by francois
See panel menu > system > porteus setting center > disquette icon > porteus save changes > create container and-or encryption. :twisted:

Re: LUKS Encrypted Porteus?

Posted: 24 Dec 2014, 07:57
by fanthom
What algorithm is used?

Code: Select all

cryptsetup -y -s 256 luksFormat $loop <<< $PPHRASE
everything is set to defaults
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/