Loading ...Install and Run Debian Linux from an Encrypted USB Drive
Another interesting article with security in mind. From the article:
You're probably familiar with the live CD concept -- a fully functional operating system on a CD that can be run on any computer that boots from its optical drive, without affecting the one(s) already installed. In a similar vein, you can set up Linux to run from a USB hard drive drive on any computer that can boot from USB. The live system offers automatic detection and configuration of the display adapter and screen, storage devices, and other peripherals. A bootable USB drive can run a mainstream Linux distribution such as Debian GNU/Linux, and can be secured, personalised, upgraded, and otherwise modified to suit your needs.
=> Running Debian GNU/Linux from an encrypted USB drive
Want to stay up to date with the latest Linux tips, news and announcements? Subscribe to our free e-mail newsletter or RSS feed to get all updates.
You can Email this page to a friend.
You may also be interested in other helpful articles:
- Howto use TrueCrypt to encrypt data under Linux and Windows
- Linux: How to Encrypt and decrypt files with a password
- How to secure the data in your PHP applications with PHP encryption
- Linux Shell script to add a user with a password to the system
- nixCraft FAQ roundup
Discussion on This Article:
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Tags: bootable usb drive, boots, debian gnu, encrypted, gnu linux, Linux, mainstream, operating system, optical drive, peripherals, storage devices, usb hard drive
hi,
(you know what i mean, teh sneakernet chaps) and someone pops by and you pull the stick and act innocent and then push it back? it may sometime show fsck consistency error.
i wouldnt like to recommend this method to all linux users. reasons:
#1. disk cache space is less i run it on 2 GiB usb drives, so upgrade process is a pain.
#2. if you ran in trouble while doing a nifty scan?
#3. there are a few ways with which you can remap the /home/[1..8] directory with different aes encryption and if you forget any of the eight partition’s password? “uh-uh Troubleeeeeeeeee.”
#4. you need to make sure you do run a firmware upgrade on it. you know?
#5. you need to make sure you run many more encryption methods on saving your those scanned logs, so others dont sniff it. so? encryption within encryption within encryption? hehe, you need a fast host CPU horsepower PC to do these major decryption work speed up.
#6. you will not want a swap on this drive, i dont want a swap it eats up space, and if you ram is low? start praying else get the swapd or other swap random creation scripts. you may never know when you ran into trouble because of stupid low RAM. damn ram.
#7. when booting of an encrypted usb in BIOS set the BIOS to UHCI mode and also enable other modes like high speed mode, i dont have nor came across USB3 devices so pardon me.
#8. last but not the least. “NEVER NEVER NEVER”, run startx in a usb stick chip, and even if you do? dont run any CPU/RAM intensive work like decryption and other mammoth works. you know the little mouse and big mouse thing right.
why i selected the minus points than plus points? people tend to follow the dumb rules of the thumb and screw up. so? remember to use common sense than rules.
home PC’s (this one) core 2 duo 2.8 gigs, 1 gig ram, and asus mobo. so i guess i can run graphics and cpu/ram intensive operation with 2-3 sec jet lag. but when i am using a cafe/friends awsome slow pc? i preffer to switch to CLI.
afterall, this is encrypted usb stick isnt it? you can carry the pen testing straight off USB which inturn is encrypted. you know how to use what as you are you and i am not you.
-paul
destructive criticism is invited, it helped/helps me reach what i missed/miss then/now. my 2 pennies.
Well i must agree , i tried to install debian on a 4GB usb encrypted stick , i don’t go into details now , but it was a pain , anyway it must be possible . I will give it a go once again , and i will post a detailed report whatever fail or success !