Backtrack 4 Video – USB With “Full” Disk Encryption
This video is based on my Backtrack 4 - Bootable USB Thumbdrive with "Full" Disk Encryption how-to. Please feel free to point out any errors or issues.
ramblings on various information security topics
-
Speaking Schedule
* August 18-19, 2009 - Nebraska Cert Conference, Omaha, NE
* October 20-22, 2009 - RSA Europe 2009, London, UK
* March 3, 2010 - RSA 2010, San Francisco, USA
What I'm Doing...
- @rmogull Woot! Congrats on the upcoming addition of more slave lab...I mean kiddo. 6 hrs ago
- @jrooks look at Camstudio. Free and works great. in reply to jrooks 1 day ago
- RT @fbz: well thought out reflections on ipad, print books, and digital book distribution http://bit.ly/c5BXs1 < very good read! 1 day ago
- More updates...
Posting tweet...
Powered by Twitter Tools
Pages
- Home
- About
- Backtrack
- Backtrack 4 - Bootable USB Thumb Drive with "Full" Disk Encryption
- Backtrack 4 Video - USB With "Full" Disk Encryption
- Backtrack 4 - USB/Persistent Changes/Nessus
- Backtrack 4 – USB/Persistent Changes/Nessus 4.02
- Backtrack 4 Pre-Release: Old Version
- Backtrack 4 Beta - USB/Persistent Changes/Nessus
- Backtrack 3 - USB/Persistent Changes/Nessus/Firefox 3/Latest nmap
- Exploring FAIR
- Archives
-
Recent Posts
-
Recent Comments
Lijit Search
Lijit SearchCategories
-
Get smart with the Thesis WordPress Theme from DIYthemes.
{ 1 trackback }
{ 31 comments… read them below or add one }
Hello,
I just glanced at your video to check out your work once again. I'm sure this will be a great visual aid to all those performing the installation for the first time.
I noticed one interesting bit... After I followed your written tutorial, my "Luks Passphrase" prompt is totally in a command prompt screen with no color or graphics and your video shows the fancy Back|Track GUI in the background...Any thoughts?
Regards,
Wh|$KeY
@Whiskey,
the fix-splash command will take care of that. I haven't included it in the how-to yet because I just found out about it recently. If you execute that after you have booted Backtrack from your USB drive, it will use the pretty boot screen
Kevin
Great tutorial. Keep it up.
I was afraid off running the fix-splash because it mix with the initfs.
Wood bee a sad end off installation if the last command destroys the system
only too make it a littel bit more preitty. But it worked great.
please can you tell me the title of the music track that you used for this video?
Hi, Thanks so much for the video Kevin. I'm sure this is a total noob question. I did try to answer this myself before I asked. At 10:00 how did you get UUID replaced with the crypted volume ID? What keystrokes or procedure did you do?
Thanks,
Steve
@.bT,
The music is from Farbo's first album "Far Beyond". The whole album can be found here: http://www.ektoplazm.com/free-music/farbo-far-beyond/ and is free which is very cool
I used "Filthy Stereo" and "Playful Sunshine."
@SD,
I used right click copy on the vol_id output and then when you have the cursor at the beginning of UUID type 'cw' without the quotes. That stands for 'change word' in vi. Then right click and paste.
-Kevin
thanks Kevin
thanks Kevin! no wonder I couldn't find what the keystroke was.. I was looking for shortcuts to terminal!
Umm at the fix-splash you're in a different directory than before. This might confuse some users
hey, Thanks a lot for this guide! I seem to be stuck at one point (around 10:00 on video), after u replaced the "UUID" with the actual UUID, how did you manage to go down the way you did inorder to type in ":wq"? sorry if this is a stupid question, but it's had me stumped for hours
Thanks again!
@kevin,
Once you have pasted the new UUID, hit the escape key and then ':wq' without the quotes.
-Kevin
awsome! thanks a lot
Hi
Thanks for the guide.
I got a warning with fdisk that I have to use gparted.
Continued anyway and everything seemed to work fine.
When I had to do "update-initramfs -u"
got an error that I cannot do it from a live cd.
Tried it 3 times so far but no luck.
Any ideas please?
Thanks
Nasos
Hello, I'm having a slight problem, I was following your tutorial and i was at the step where you paste the UUID and my computer shut down, so I though it's probably best to format and start again. I put the USB in, went to format, set it to FAT#@ and hit forma, it still said only 1kb left and the max cap. was 103MB left at the end (this is on a 8gb USB). Now i remember that I encrypted it, so how would i go about formatting it? Im guessing i should use the terminal? How would i do this, im new to Linux.
@Nasos,
That is an indication that you didn't get chrooted. Make sure you get chrooted before you install hashalot, lvm2 and do all the script work.
@Victor,
Check out the written tutorial. It has instructions on how to open the encrypted partition if you have to do troubleshooting.
http://www.infosecramblings.com/backtrack/backtrack-4-bootable-usb-thumb-drive-with-full-disk-encryption/
It should get you to where you can finish up.
-Kevin
Thanks very much kriggins for your reply.
I've tried it again and when I reboot, in the splash screen
I have to enter LUKS passphrase twice and then it drops in to shell
with an alert that " /dev/mapper/vg-root " does not exist.
Thanks again for your time.
Nasos
I have redone the steps after installation and it works!
Don't know what I did different from last time though
Thanks very much
Nasos
Hi guys,
I just followed this nice video, but I have a litle problem.
After mounting the new installation and chrooting it / I do not have any network connections in the console.
I cannot run apt-get install and udpate for the new thumb drive installation.
In another new command line it is working but not in the one I mounted and chrooted the new installation.
I actually do not know what to do in this case?
Could you help me out? / many thanks!
@Flow,
Sounds like you didn't get the proc and sys filesystems mounted after you chrooted. Check out the instructions here and see if that helps.
http://www.infosecramblings.com/backtrack/backtrack-4-bootable-usb-thumb-drive-with-full-disk-encryption/
-Kevin
Hey Kevin,
thanks for your fast response.
I followed all the instructions in the mentioned article before and mounted proc and sys after chrooting - but I have the same problem.
I will start from scratch today and see if that helps, because I disconnected the network during installation for a short period / maybe this is related.
Best regards,
Florian
problem at the updateing the image: update-initramfs is disabled since running on a live CD ....
solution was found at ubuntu bugs:
mv /usr/sbin/update-initramfs /usr/sbin/update-initramfs.old
ln -s /rofs/usr/sbin/update-initramfs /usr/sbin/update-initramfs
@max,
Actually the problem here is usually caused because the user did not chroot correctly. That error is fine during much of the install. One just has to make sure to chroot before the final update-initrams.
-kevin
Hey,
it worked now for me, I just did it again - maybe it was a problem during installation and disconnecting from the Lan.
So far everything is fine.
Thanks again for your help Kevin!
Hey!
10x for the video. Really nice and simple. I just don't know why the installation takes so loooooong
I think about an hour or more has passed and it has only come up to 42%...
I'm not using it anyway on this pc so i guess i'll have to wait about another hour or so. Hope everything will work fine because I plan on using it tomorrow(today).
Thank you again! Gonna light a big spliff for you
Enter LUKS passphrase:
device-mapper: table: 253:0: crypt: Error allocating crypto tfm
Command failed: No key availible with this passphrase
Get this on boot.. this is the 3th or 4th install. I'm not getting there
The password is right, I know that.
I tried veeeery many hours to install please help me.
Are there any password policies?
@thx1138,
The crypto tfm error is almost always due to the crypto modules not getting copied to the initrd image correctly. Double check that you have the /etc/initramfs-tools/modules file updated to include the indicated modules.
As far as password policies go, what exactly are you referring to? Ubuntu uses pam for authentication, so any password complexity, etc. policies that can be configured for pam on any other Linux system should work.
-Kevin
quote @ 78% of the install: "We are sorry. The installer crashed"
- I am getting no luck 3rd day in a row.
well i followed the instructions exactley... for many times
. I was wondering if i could use the same method to install on hdd with encryption by simply replacing the device name. Is it possible?
As i remember i did have some pb with the update.. i tought i sorted it out. I want to try to install to hdd with encryption asap. Waiting for reply.
Ps: i can't fail since i plan on formating my entire hdd 250gb
If i fail i'll most probably give up and all my data will be gone