howtos:encrypted_usb_storage
no way to compare when less than two revisions
Differences
This shows you the differences between two versions of the page.
— | howtos:encrypted_usb_storage [02/12/2018 21:34] (current) – created - external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | Start out by identifying your device name. Insert the usb stick and run in a terminal: | ||
+ | < | ||
+ | dmesg | ||
+ | </ | ||
+ | |||
+ | The output would be something like this: | ||
+ | < | ||
+ | ........ | ||
+ | ........ | ||
+ | [17028.141759] usb-storage: | ||
+ | [17028.141772] usb-storage: | ||
+ | [17033.140314] usb-storage: | ||
+ | [17033.141276] scsi 9:0:0:0: Direct-Access | ||
+ | [17033.185463] sd 9:0:0:0: [sdc] 1998848 512-byte hardware sectors (1023 MB) | ||
+ | [17033.186669] sd 9:0:0:0: [sdc] Write Protect is off | ||
+ | [17033.186682] sd 9:0:0:0: [sdc] Mode Sense: 0b 00 00 08 | ||
+ | [17033.186688] sd 9:0:0:0: [sdc] Assuming drive cache: write through | ||
+ | [17033.194505] sd 9:0:0:0: [sdc] 1998848 512-byte hardware sectors (1023 MB) | ||
+ | [17033.196549] sd 9:0:0:0: [sdc] Write Protect is off | ||
+ | [17033.196563] sd 9:0:0:0: [sdc] Mode Sense: 0b 00 00 08 | ||
+ | [17033.196569] sd 9:0:0:0: [sdc] Assuming drive cache: write through | ||
+ | [17033.197444] | ||
+ | [17033.199662] sd 9:0:0:0: [sdc] Attached SCSI removable disk | ||
+ | [17033.200242] sd 9:0:0:0: Attached scsi generic sg3 type 0 | ||
+ | ........ | ||
+ | ........ | ||
+ | </ | ||
+ | |||
+ | This device is called /dev/sdc and the partition is sdc1. | ||
+ | |||
+ | Unmount the device so we can massage the partitions on it :) | ||
+ | |||
+ | Use whatever tool you like to format the stick into a ext3 partition. **WARNING** THIS WILL DELETE ALL DATA ON THE STICK!! | ||
+ | |||
+ | Install cryptsetup: | ||
+ | < | ||
+ | sudo apt-get install cryptsetup | ||
+ | </ | ||
+ | |||
+ | Now create the encrypted partiton: | ||
+ | < | ||
+ | sudo luksformat -t ext3 /dev/sdc1 | ||
+ | Creating encrypted device on / | ||
+ | |||
+ | WARNING! | ||
+ | ======== | ||
+ | This will overwrite data on /dev/sdc1 irrevocably. | ||
+ | |||
+ | Are you sure? (Type uppercase yes): YES | ||
+ | Enter LUKS passphrase: | ||
+ | Verify passphrase: | ||
+ | Command successful. | ||
+ | Please enter your passphrase again to verify it | ||
+ | Enter LUKS passphrase: | ||
+ | key slot 0 unlocked. | ||
+ | Command successful. | ||
+ | mke2fs 1.41.3 (12-Oct-2008) | ||
+ | Filesystem label= | ||
+ | OS type: Linux | ||
+ | Block size=4096 (log=2) | ||
+ | Fragment size=4096 (log=2) | ||
+ | 62208 inodes, 248742 blocks | ||
+ | 12437 blocks (5.00%) reserved for the super user | ||
+ | First data block=0 | ||
+ | Maximum filesystem blocks=255852544 | ||
+ | 8 block groups | ||
+ | 32768 blocks per group, 32768 fragments per group | ||
+ | 7776 inodes per group | ||
+ | Superblock backups stored on blocks: | ||
+ | 32768, 98304, 163840, 229376 | ||
+ | |||
+ | Writing inode tables: done | ||
+ | Creating journal (4096 blocks): done | ||
+ | Writing superblocks and filesystem accounting information: | ||
+ | |||
+ | This filesystem will be automatically checked every 29 mounts or | ||
+ | 180 days, whichever comes first. | ||
+ | </ | ||
+ | |||
+ | É voila you now have an encrypted usb stick. Now test it out by ejecting it and plug it back in: | ||
+ | |||
+ | {{: | ||
+ | |||
+ | Enter your password and you should see it get mounted: | ||
+ | |||
+ | {{: | ||
+ | |||
+ | |||
+ | === And do I have to remind you that if you loose the unlock password you will never recover your data on the stick....?? ;) === | ||
+ | ---- | ||
+ | |||
+ | |||
+ | //Source: http:// | ||
howtos/encrypted_usb_storage.txt · Last modified: 02/12/2018 21:34 by 127.0.0.1