All of lore.kernel.org
 help / color / mirror / Atom feed
* [dm-crypt] Hidden operating system
@ 2014-05-18  8:22 BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM
  2014-05-18 21:40 ` Milan Broz
  2014-05-19 14:00 ` Andrew
  0 siblings, 2 replies; 3+ messages in thread
From: BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM @ 2014-05-18  8:22 UTC (permalink / raw)
  To: dm-crypt

Hi evereyone,
Is anything like that
http://www.truecrypt.org/docs/hidden-operating-system possibile with linux
and cryptsetup? I would even use TrueCrypt to do such thing, but even with
it it is only supported on Windows.
Actually i prefer do to that with passphrases only, since usb with luks
header, bootloader or keyfile are something that i can lost and also can
compromise the plausible deniability. I hope everyone understands and
thanks in advance.
grrdl

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [dm-crypt] Hidden operating system
  2014-05-18  8:22 [dm-crypt] Hidden operating system BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM
@ 2014-05-18 21:40 ` Milan Broz
  2014-05-19 14:00 ` Andrew
  1 sibling, 0 replies; 3+ messages in thread
From: Milan Broz @ 2014-05-18 21:40 UTC (permalink / raw)
  To: BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM, dm-crypt

On 05/18/2014 10:22 AM, BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM@bitmessage.ch wrote:
> Hi evereyone,
> Is anything like that
> http://www.truecrypt.org/docs/hidden-operating-system possibile with linux
> and cryptsetup? I would even use TrueCrypt to do such thing, but even with
> it it is only supported on Windows.
> Actually i prefer do to that with passphrases only, since usb with luks
> header, bootloader or keyfile are something that i can lost and also can
> compromise the plausible deniability. I hope everyone understands and
> thanks in advance.

Well, for hidden OS you need to have special bootloader (TrueCrypt bootloader
decides what OS to boot according to provided passphrase).

Also hidden disk/OS is limited to FAT (for outer volume) only, so I think
it is not possible to easily do this for Linux (where you need other
filesystem).


What is probably possible is to use Truecrypt boot loader and install
Linux with some bootloader hacks and boot to "hidden" Linux OS.

But it would be tricky to do that and it would be very fragile.

Milan

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [dm-crypt] Hidden operating system
  2014-05-18  8:22 [dm-crypt] Hidden operating system BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM
  2014-05-18 21:40 ` Milan Broz
@ 2014-05-19 14:00 ` Andrew
  1 sibling, 0 replies; 3+ messages in thread
From: Andrew @ 2014-05-19 14:00 UTC (permalink / raw)
  To: BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM; +Cc: dm-crypt

Hi grrdl,

If you are interested in having multiple operating systems that share the *same* /boot partition, that should be do-able with some hackery to the boot scripts -- to try the provided password on a number of encrypted candidate root partitions.  If you have multiple system instances that share kernel and boot command line parameters, then the only difference would be which particular one gets loaded up (decrypted) when you put in a password.  You may have to do something horrid like give all of them the same label :).  You could partition the disk into (say) 4 parts, and use fewer than all the parts for some kind of deniability.

As I read the start-up scripts for ubuntu the password entered on boot is used only for a single device, and not attempted on all available luks devices until a bootable system appears.  

&:-)


On Sun, 18 May 2014 01:22:35 -0700
BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM@bitmessage.ch wrote:

> Hi evereyone,
> Is anything like that
> http://www.truecrypt.org/docs/hidden-operating-system possibile with
> linux and cryptsetup? I would even use TrueCrypt to do such thing,
> but even with it it is only supported on Windows.
> Actually i prefer do to that with passphrases only, since usb with
> luks header, bootloader or keyfile are something that i can lost and
> also can compromise the plausible deniability. I hope everyone
> understands and thanks in advance.
> grrdl
> 
> 
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@saout.de
> http://www.saout.de/mailman/listinfo/dm-crypt


-- 
It's sea and land day

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2014-05-19 14:08 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-05-18  8:22 [dm-crypt] Hidden operating system BM-2cXweg5fL3NmCN6HDmMuL5VbmDXbeRaSCM
2014-05-18 21:40 ` Milan Broz
2014-05-19 14:00 ` Andrew

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.