Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

  1. #1
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    8

    Default TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Hey guys, i really hope you can help me out here.

    Ok, simply i want to have my laptop fully truecrypt encrypted but i can seem to get it to work.

    I have 2 hdd`s. 1 with win7 and one with backtrack.
    Currently booting from the win7 hdd, and i have used easy bcd to edit windows bootloader, and add backtrack.

    What i want is to have both hard drives encrypted, and be able to use the [esc] function in truecrypt bootloader to access my backtrack hdd. so it wont show up in the list when windows boots.

    I have already used the full system encryption function in truecrypt but it hasnt encrypted my backtrack hdd. and the [esc] function says "No bootable partition found"

    So symply
    - 2 HDD`s, booting from win7 hdd, and extra backtrack hdd
    - Want full truecrypt encryption on both hdds,
    - boot to backtrack only from [esc] fucntion in truecrypt bootloader.

    HOW CAN I GET THIS TO WORK. Any help will be greatly appreciated and you will be added to my list of ppl not to kill when i take over the world :P

  2. #2
    Just burned his ISO
    Join Date
    Jun 2012
    Posts
    1

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Hello,

    First of all, you speak of truecrypt encrypting your BT5 installation, which is not possible.
    You can achieve a full-disk-encryption dual-boot, but not with just Truecrypt.

    The idea is simple:
    Both operating systems are encrypted, with the truecrypt bootloader in the MBR of the bootdisk
    and the BT bootloader in the MBR of the second HDD.

    This is how you do it:
    You install W7 (already did), then you install Truecrypt and encrypt your whole drive.
    Make sure Truecrypt installs its bootloader in the MBR of the bootdisk (the disk
    you are going to install windows on).

    During this process, you will have to reboot and test the bootloader,
    in order to make sure it is all working. After this, truecrypt can begin the actual encryption
    (which takes long!). You might want to wait with this,
    because it takes very long and you will have to do it again if you screwup during
    the process of installing BT, so just leave it unencrypted (note that the bootloader
    is already installed in the MBR).

    Now, you boot your BT stick.
    Partition your second disk.
    I like fdisk but you can also apt-get install gparted,
    so that you have a graphical interface for the partitioning of your drive.

    You need two partitions, a boot partition and a root partition.
    Make your boot partition at least 200 Mb (I've had problems with this,
    so I always make my boot partition 512Mb) and leave the rest for the root partition.

    Install the needed programs for the encryption:
    apt-get install hashalot

    The next step is very important and should be executed
    very carefully!
    "cryptsetup -y --cipher aes-xts-plain --key-size 512 luksFormat /dev/sdXY",
    where X stands for your drive letter, and Y stands for the partition number.
    Be carefull with this because you can mess up your windows installation!
    You'll have to check which is the drive for your BT installation.
    Use the tool you like to check which letter stands for your drive.
    If all went ok, you should have four partitions:
    - 100Mb W7 boot partition
    - Rest of the disk W7 root partition
    - 512Mb BT boot partition
    - Rest of the disk BT root partition

    Execute the command and type in your desired password twice.
    Now execute this command to open your newly created encrypted partition:
    "cryptsetup luksOpen /dev/sdXY pvcrypt"
    Execute these commands:
    "pvcreate /dev/mapper/pvcrypt"
    "vgcreate vg /dev/mapper/pvcrypt"
    Now, in order to create a (encrypted) swap partition,
    execute the following command:
    "lvcreate -n swap -L XG vg",
    where the X stands for the amount of gigabytes for
    your swap partition (use the amount of ram you have).
    Execute the following command to create the root partition
    inside the encrypted partition, next to the swap partition:
    "lvcreate -n root -l 100%FREE vg"
    Execute:
    "mkswap /dev/mapper/vg-swap"
    "mkfs.ext4 /dev/mapper/vg-root"

    Finally, ready to install BT to the created partitions.
    Click on install.sh on your desktop.

    Proceed with the installer until it says
    "Prepare disk space"
    Select manually.
    Select the first partition of the drive (/dev/sdX1)
    and make it ext4, let it be formatted and set mount point: /boot
    Select "/dev/mapper/vg-root", make it ext4, let it be formatted en set mount point: /
    Select "/dev/mapper/vg-swap", make it swap (should be already, but just to make sure).
    Click forward and then advanced (VERY IMPORTANT).
    Select the second drive (/dev/sdX) and let the BT's bootloader get installed.
    Click install and wait.
    Click "Continue testing".

    Execute (in the SAME terminal):
    mkdir /mnt/backtrack5
    mount /dev/mapper/vg-root /mnt/backtrack5
    mount /dev/sdb1 /mnt/backtrack5/boot
    chroot /mnt/backtrack5
    mount -t proc proc /proc
    mount -t sysfs sys /sys
    apt-get update
    apt-get install hashalot lvm2
    vi /etc/crypttab

    You are now editing a file.
    Add the following:
    pvcrypt /dev/sdX2 none luks
    /dev/sdX2 should be the encrypted partition (you created
    with this command: cryptsetup -y --cipher aes-xts-plain --key-size 512 luksFormat /dev/sdXY)

    Quit vi (:wq) and execute:
    vi /etc/fstab
    Change te line about the root partition (the only line with "/" in it. NOT /boot!),
    make it: "/dev/mapper/vg-root / ext4 defaults 0 1"

    Execute:
    cd ~
    wget http://www.infosecramblings.com/cryptroot.patch
    patch -u /usr/share/initramfs-tools/scripts/local-top/cryptroot ./cryptroot.patch
    apt-get update
    apt-get upgrade
    apt-get dist-upgrade
    update-initramfs -k all -u

    This is it, you are ready!
    Execute "reboot" and watch the magic!
    Select ESC at the truecrypt bootloader
    to boot BT and type your password at the truecrypt
    bootloader to boot W7.

    Good luck,
    if you have further questions, I am glad to help you.

  3. #3
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    8

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    That is by far, the best and most in-depth answer i have ever had the pleasure of recieving in a forum.

    Thank you
    Last edited by 7hr08ik; 11-01-2012 at 02:15 PM.

  4. #4
    Just burned their ISO
    Join Date
    Oct 2012
    Posts
    12

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Hi,
    Thanks for this nice tutorial. I'm looking into using this to setup a sole encrypted BT5 install on a hdd and then copy in a BT5 environment I've been using and tweaking for several time. The setup I'm using now has been installed without encryption and after sometime using it want to switch to an encrypted setup.

    Would it possible to make a "dd" backup of the existing partition to a external HD, setup the boot-partition and encrypted root-partiton how you describe it and then copy in the boot-dir from the backup to the new boot partition, copy the rest of the backup to the new encrypted partition, update the fstab and cryptab files according to your tutorial, update the grub config file with the new UUID and then run everything?

    I haven't tried it yet, but I'm wondering if this could work and if I'm forgetting something before rendering my BT5-setup unusable ;-)

    Thanks for any info in advance.

  5. #5
    Just burned their ISO
    Join Date
    Dec 2012
    Posts
    1

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    I looked into this a long time ago, and was unable to achieve any success at getting the bootloaders to chain correctly.

    I installed Win7, converted to hidden OS using truecrypt.

    DD'ed a working BT installation into the hidden OS partition, then installed Win7 as decoy operating system.

    TC works correctly. Decoy password boots the decoy Win7 installation, but the password for the hidden OS would not chain to grub. I toyed around with it for awhile, but am not overly skilled with bootloaders. I think someone smarter than me in that area could figure it out, but I had no joy.

    Let me know if you guys know of a way.

  6. #6
    Just burned their ISO
    Join Date
    Oct 2012
    Posts
    12

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Hi,

    I got everyhting working. Installed exactly like the tutorial above. After that started up from a bt disk, mounted the partitions and saved the working crypttab and fstab files somewhere else. Rm -rf the newly cretaed BT5 partition. Mounted another disk with a backup of a working BT installation and restored that into the now empty encrypted partition. After that replaced the restored fstab and crypttab files with the ones I saved away before. Rebooting and it's working. I had to reinstall the nvidia drivers though.

    At least for a few days... Since today I cannot boot into the encrypted partiton anymore. Getting the error message that /dev/mapper/vg-root doesn't exist anymore, just suddenly?

    Anyway I got it working but it is way to buggy and to much hassle for a real working system that has to be used daily, so I'm reverting back to an unencrypted system. Better of using a Truecrypt container for secure storage of files etc. Far more easy in daily use.

  7. #7
    Just burned their ISO
    Join Date
    Dec 2012
    Posts
    1

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Quote Originally Posted by Swiftme View Post
    Getting the error message that /dev/mapper/vg-root doesn't exist anymore, just suddenly?
    I am also getting this issue after working for a day. What did you do to fix this issue? It would be nice if more people when running into an issue shared with others what they did to resolve it. Thanks!

  8. #8
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    8

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    I have tried and tried and tried, but after ages, im back on the forum

    Followed this tutorial to the letter.....Which is awesome by the way.

    But my truecrypt boot loader refuses to find any other disk. When i push [ESC] it just says "No additional partitions found"
    I can still access my 2nd HDD with BT5 through my BIOS, but this is annoying. Does anyone know how to fix this problem?

  9. #9
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    8

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    Can anyone help?

    Ive followed this tut several times. My Boot drive is win7, my 2nd hdd is BT5. The truecrypt bootloader boots into windows fine. But when i select [ESC] it says "No partitions found"

    I know my 2nd hdd with BT5 is working fine coz i can select it from BIOS and load into encrypted BT5 fine. But the truecrypt loader wont find it....what am i missing?

  10. #10
    Just burned his ISO
    Join Date
    Oct 2012
    Posts
    8

    Default Re: TRUECRYPT - Dual Boot Win7 + Backtrack 5r3

    well i had this issue myself today......i searchede a bit and found this.......

    http://www.nuc.cz/backtrack-5-persis...appervg-root-d

    which leads you here......

    http://www.infosecramblings.com/back...sk-encryption/

    Scroll to the bottom and find the troubleshooting bit.....Basically the error is coz, your boot up has lost its decription capabilities....so these links say to boot from the live cd, mount the partitions and re-install the cryptsetup.....After thinking i realised that i ran "apt-get autoremove" and it removed cryptsetup, and then ran the build initframs process which is used during the inital install process.....

    So learned something today...if ever see initfrans running, check that cryptsetup is still installed then re-run initframs

Page 1 of 2 12 LastLast

Similar Threads

  1. Dual boot BT5R2 + Win7 on UEFI netbook with existing Win7-installation
    By fighterhayabusa in forum BackTrack 5 Beginners Section
    Replies: 16
    Last Post: 01-17-2013, 09:17 PM
  2. Duol boot, win7 and BT5 in dual partition hd, Backtrack not be recognined.
    By recoscp in forum BackTrack 5 Beginners Section
    Replies: 0
    Last Post: 02-15-2012, 07:34 PM
  3. Dual-boot and truecrypt
    By PryorDaniel in forum BackTrack 5 Beginners Section
    Replies: 1
    Last Post: 10-03-2011, 05:21 PM
  4. BT4 dual boot install issue with WIN7
    By esampathj in forum BackTrack 5 Beginners Section
    Replies: 6
    Last Post: 07-06-2011, 12:03 PM
  5. TrueCrypt - Dual Boot in One Drive
    By imported_r00tPT in forum OLD Newbie Area
    Replies: 0
    Last Post: 11-01-2009, 05:59 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •