Page 5 of 5 FirstFirst ... 345
Results 41 to 49 of 49

Thread: HOWTO: BT4 Pre-Final Full Disk Encryption

  1. #41
    Member
    Join Date
    Jul 2007
    Posts
    104

    Default

    Quote Originally Posted by Barry View Post
    Actually wyze has a point. No how-to should be written up from memory. It should be tested a couple times before posted as well. Especially since this how-to has the user reformatting his drive. Technically all the info is here now, it should just be rewritten to smooth out the backwards steps.
    I still stand by my previous post. At the time I first set out to encrypt BT I was unable to find any other guides which dealt specifically with encrypting BT. In the process of figuring it out myself I had gone through the process many times and took careful notes about what I did. At the end, I found myself with a set up very different from the single encrypted partition I have outlined in my guide. This accounts for some (not all) of the problems others have had. I did address this fact in the guide itself and said I would be happy to try and fix any problems that may arise due to this. I'll be the first to admit that it is not written as best it can. However, I lack the time to sit down and go through the whole process myself until it is absolutely perfect these days. If anyone would like to do this, please, go right ahead.

    Wyze called my guide a "big bucket of fail" without making any attempt to improve it. Additionally, judging by previous comments, it has obviously helped some. Again, wyze, if you would like to point out what problems you see with the guide I would be more than happy to address them.

  2. #42
    Junior Member
    Join Date
    Oct 2008
    Posts
    32

    Default

    Doesn't the ubiquity installer allow for nearly full disk (minus /boot) encryption via LUKS?

  3. #43
    Member
    Join Date
    Jul 2007
    Posts
    104

    Default

    Quote Originally Posted by Titan8990 View Post
    Doesn't the ubiquity installer allow for nearly full disk (minus /boot) encryption via LUKS?
    As far I know, the Ubiquity in BT4 PF does not support encryption. (Where the encryption option normally is, is not there.)

  4. #44
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Quote Originally Posted by Titan8990 View Post
    Doesn't the ubiquity installer allow for nearly full disk (minus /boot) encryption via LUKS?
    I've not tried to use the newer versions from Ubuntu, but the one in BT4PF doesn't have that option. I also think the encryption in the newer Ubuntu disks is a script and not really ubiquity.

  5. #45
    Member
    Join Date
    Jul 2007
    Posts
    104

    Default

    Quote Originally Posted by Barry View Post
    I've not tried to use the newer versions from Ubuntu, but the one in BT4PF doesn't have that option. I also think the encryption in the newer Ubuntu disks is a script and not really ubiquity.
    I know the Ubuntu 9.04 alternate install CD has encryption capabilities but not the regular desktop installer cd. Given that the alternate cd has it, we could very well see encryption capabilities built in to the install cd of an upcoming release. Fedora's main install cd has had encryption capabilities standard since at least version 10 (almost a year ago).

  6. #46
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    /me puts on gloves...

    Quote Originally Posted by ESC201 View Post
    Excuse me wyze, instead of simply criticizing my guide you make some suggestions on how it could be improved. Referring to it as "a big bucket of fail" is in no way productive and gives you the appearance of a twelve year old kid.
    Actually, I'm an 11 year old kid.

    Quote Originally Posted by ESC201 View Post
    I am aware that my guide is not the definitive guide of disk encryption and to be honest, I lack the knowledge to make it that way.
    Ahem... then why bother writing an actual HOWTO entitled "HOWTO: BT4 Pre-Final Full Disk Encryption"??? A bit redundant, don't you think? 0o

    Quote Originally Posted by ESC201 View Post
    Quite honestly, if you have nothing constructive to add, go somewhere else, you're idiotic comments are not appreciated here.
    Tell that to the members whom will have potentially destroyed the data on their drives and/or wasted a fair amount of time with your failed HOWTO. Even with the other users' input, you have failed to update it. I don't think there can be anything more constructive for the good of the other forums members and passerbys then to shoot you straight.

    Furthermore, I've been here for a couple of years, so I don't quite see where you think you can get off by telling me to "go somewhere else", and comments are far from idiotic in reference to this topic.

    Quote Originally Posted by Barry View Post
    Actually wyze has a point. No how-to should be written up from memory. It should be tested a couple times before posted as well. Especially since this how-to has the user reformatting his drive.
    Precisely the _main_ reason I spoke up.

    Quote Originally Posted by ESC201 View Post
    I still stand by my previous post.... I'll be the first to admit that it is not written as best it can. However, I lack the time to sit down and go through the whole process myself until it is absolutely perfect these days....
    THEN WHY BOTHER WRITING A "HOWTO" AT ALL ?? Half a$$ isn't acceptable for writing a HOWTO.

    Quote Originally Posted by ESC201 View Post
    ...If anyone would like to do this, please, go right ahead.
    So now you would like someone to finish the incomplete HOWTO you wrote, which you admit you: 1) do not really have the knowledge to write on the subject and 2) do not have the time to put in effort to ensure completeness and accuracy, ensuring other forum members to not mess up their hardware?

    Is this an accurate assessment?

    Quote Originally Posted by ESC201 View Post
    Wyze called my guide a "big bucket of fail" without making any attempt to improve it.
    That is correct. A HOWTO should be pretty bug free, less a typo or two.

    Quote Originally Posted by ESC201 View Post
    Again, wyze, if you would like to point out what problems you see with the guide I would be more than happy to address them.
    First off.. {do,would,could} you have the time in the first place???

    Ok, here goes:

    Don't write HOWTO's on this forum, especially a HOWTO that affects someone's HDD unless your pretty damned confident that it will work from A to Z in the steps that you outline. Minor typos aren't that big of a deal, especially when they are non-trivial, but come on - this HOWTO is far from complete.

    If you don't have the time to ensure that your guide is fairly concise, don't write one! .. that should be a no brainer, capiche?

    So getting back to our statement of "gives you the appearance of a twelve year old kid", is it fair to say that this thread "gives you the appearance of a lazy middle-aged man"?
    dd if=/dev/swc666 of=/dev/wyze

  7. #47
    Member imported_vvpalin's Avatar
    Join Date
    Apr 2009
    Posts
    442

    Default

    While i thank you for your time and some of the knowldge you posted ESC201, im going to have to agree with wyze.

    Of all the How-To's to write and post here this is the #1 to NOT screw up. Personally i have listened to 2 people on irc bitch about how your method didnt work. I doubt any of them lost any data but thats besides the point as they surly lost time.

    Im all for "learning by doing" but something as critical as disk encryption is NOT something we need to figure out as we go along. I understand where you are comming from by doing this by memory, however this simply isnt the guide for it no matter how usefull your info might be to someone else.

    Anyone else wants to do a writeup of the proper method from start to finish after TESTING IT FIRST feel free, if not ill get around to it in a few days and we can burry this thread.
    Using backtrack for the first time is like being 10 years old again with the keys to a Ferrari.

  8. #48
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default

    With the intention of trying to stop this from turning into a full on flame war, let me say the following:

    ESC201, if this is not intended to be a guide that a person can follow step by step without having to think too much or perform their own testing, you should make this very clear to the reader. In the first post, right up the top and in bold. With big disclaimers about how this could potentially hose their system and they better know what they are doing and what they are getting into. If this is not meant to be a "no-brainer" then be sure that you don't misrepresent it as such - even by omission of a crystal-clear statement to the contrary. Because a no-brainer is exactly what most readers will expect if not told otherwise.

    While wyze could have potentially made his points in a slightly less churlish manner, they are still valid points.

    Everyone has been reasonably well behaved so far, but I'm going to ask nicely for people not to let this thread degenerate any further otherwise I will have to close it

    Thanks
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  9. #49
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Comments on this tutorial.
    I took the time to dissect what you have done in the hopes that you will make it better. In the meantime I must say that is should be known that you are the sole party responsible for supporting, fixing, maintaining, evolving this tutorial.
    I have left any and or all spelling mistakes as they are but where grammar can (or has made) make an effect, I have offered a fix or another means of making the statements.


    I recommend popping in a gparted live cd now and partitioning you hdd as you see fit.
    Could I not use the actual BT dvd to do the same thing? Some people have limited bandwidth for downloading and will be reluctant to go this route.
    I’m writing this guide for a single boot BT install but I have my system set up with a dual, tri or even quad boot.
    This is a multiple choice sentence, while rare in the English language they do exist.
    You have dual, tri, or even quad boot setup on one computer? If it is not relevant to the task at hand then get rid of it.
    Thus, what I did is slightly different from the guide
    So what did you do ? Maybe you have something cool that the other kids want too.
    You can also add encrypted swap or separate home/root partitions. The commands are essentially the same, there's just a few more of them.
    Well since you teased me and piqued my interest where can I find out about these commands?
    I'm writing this more of a basic disk encryption guide, not an encyclopaedia of how to do every type of encryption line by line.
    Why not? Again if it is not relevant then leave it out.

    1.) OPTIONAL
    So here we got started but the first step in getting started is optional?
    Might be better to either make it mandatory in your tutorial or put it at the end as a note.
    *NOTE before starting this tutorial if you have a drive that has been used before then one can overwrite the data using DD or some other such tool. Where dd is a link maybe? Not to mention one should really do a dd and then make the new partitons.



    3.) EVERYTHING in the partition WILL BE DELETED.
    But I thought we already deleted everything?
    This warning although I understand what you meant with it maybe someone else will not. It really isn't needed.
    If you are familiar with luks or want some more security, modify the above command to increase the key length, etc. I’m not going into that.
    Again leave this out or leave a reference to where I can find said commands.
    If you also use a swap or separate home partition, make sure you run that command on each of those if you want them encrypted.
    Is there a reason I would not want to encrypt those partitions?

    4.)let’s format it as ext3. (If anyone tries ext4, let me know how it goes, I’m curious to see if it works or not.)
    Don't advise people to experiment in the middle of a tutorial save that for the end or leave it out all together if you are unsure of the results because then you are expected to support it.
    –O extent makes it faster or something, I’m not sure.
    Don't make assumptions.
    If you don't know then don't talk about it.
    Just fyi, the reason I say to use the gui installer rather than doing a copy from the command line is simply that it would take more commands to fix what would get screwed up. However, for those that insist on installing their system via terminal, you can try the below commands. I have not tested these at all thus, I have no idea of they work or not. If you do do it this way you may skip step six. Thanks to floyd for posting the basis of these commands.
    Again it would be best if you leave things out in which you have no idea about.

    6.) hopefully the installer completed successfully. If so, stay in the live cd;
    If not what do I do know?

    If you had problems with this step, floyd has posted the following workaround.
    This is not a work around but something different to what you have.
    Might want to discover the differences between the two and use one or the other.

    From here you can run apt-get update if you want.
    Leave out the run apt-get update until you are complete with the tutorial itself. No need to add more potential problems.

    Also, they should already be installed but just to make sure you can do a “apt-get install cryptsetup initramfs-tools”. You'll get errors later if they aren't installed.
    Is this the only way to find out if these tools are available ? There is probably a better way than running apt-get?

    9.) we need to add a few kernel modules into the /etc/initramfs-tools/modules file. This tells what kernel modules we want loaded at boot. Add these lines to that file…
    How do I add them?
    I don't believe these are all necessary but it doesn't hurt to have them in there.
    Another line that probably should not be here. If you don't know then look it up or run the experiment to find out.
    Or just don't give an option to the reader.
    I get an error when it tries to create an initrd file for kernel 2.6.29.3 but BT4 comes with 2.6.29.4 so as long as you get no errors on the initrd for 2.6.29.4 you should be good. It may take a few seconds to do this.
    What does this have to do with anything then? Or did you not do this on BT4?

    Note on the grub-install command, the end /dev/sdX is the drive, not the boot partition (eg, /dev/sda, not /dev/sda1).
    If you recieve the error "/dev/sdX does not have any corresponding BIOS devices" pivot back to the live cd and run this
    This is something that should be checked before leaving the live cd environment.
    So this step either needs to be moved up or it needs to be eliminated.
    Also note that I am using a slightly different set up on my system so I haven’t tested this step line by line personally;
    Which begs the questions why did your write this if you did not test it beforehand?
    It's no wonder you have recieved criticism.
    Alright. Pivot back to the live cd (type exit)
    How do I "Pivot" by typing exit or what ?
    Thats what you have in this sentence. But it is not what you mean.
    Also the link does not work for your usb encryption tutorial.
    Post number 7 I think in your thread references that tutorial again and talks in great depth about it.
    I would leave that for the other thread. Users will read the thread and some of them may get confused with the terms.

    Again this is not to discourage you in anyway but rather get you to take your work more seriously and have means to help better it.
    Look you are on a forum with many professionals ( yeah there are some itards as well but we generally weed them out rather fast)as such most of them are not going to stand for less than the best (or perfection).
    So take all of it in stride and move forward.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Page 5 of 5 FirstFirst ... 345

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •