Giter Site home page Giter Site logo

enciso's Introduction

# Encrypted ISO disc ## How to create this disk ### Create base Slack ISO image 1) download stock slax 2) apt install gpg, cryptsetup, syslinux-utils (provides hybrid iso) and other tools 3) use savechanges 4) create new ISO 5) make it hybrid ### Create ISO image 1) Slax ISO (modded or stock) 2) If it is bootable iso, make it hybid iso with MBR (if it is not already) 3) Create GPG key, use strong password - echo "some random key, can be used also from /dev/urandom" | gpg --armor -q -c > key.txt 4) create SquashFS, which will be encrypted - mksquashfs private/ private.sqfs -all-root 5) Encrypt by using LUKS2 - truncate -s +8M private.sqfs - gpg -q -d testenc/key.txt | cryptsetup reencrypt --key-file=- --encrypt --type luks2 --resilience none --disable-locks --reduce-device-size=8M private.sqfs - truncate -s -4M private.sqfs 6) resize key to atleast 2048 bytes (or pad it to nearest 2048 size) - truncate -s 2048 key.txt 6) Combine key and SquashFS with ISO (SquashFS is already padded to 4096 bytes) - cat input.iso key.txt private.sqfs >> output.iso 7) use fdisk -w never output.iso - use "c" to enable old-DOS partition (support less than 1MB size) - create new partition with +3 sectors (total 4 sectors of 512, for key) - create new partition rest of image (SquashFS) OPTIONAL: Check ISO in some virtual environment 7) Burn ISO ### Mount private part 1) Prepare Linux environment with Cryptsetup with support LUKS2 and GPG 2) Prepare loop device with partition detect (if hybrid ISO was used) - losetup -P /dev/loop10 /dev/sr0 3) Open LUKS2 device with GPG key by using password - cat /dev/loop10p2 | gpg -q -d | cryptsetup --key-file=- open /dev/loop10p3 private 4) Mount encrypted mapper device - mount /dev/mapper/private /mnt/private ### Troubleshoot Q: GPG says gpg: public key decryption failed: Inappropriate ioctl for device A: try do `export GPG_TTY=$(tty)`

enciso's People

Contributors

petrkr avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.