Debian Configuration :: Give Grub Access To Encrypted Partition
Apr 30, 2011
My partitions are set up as follows:
[code]...
I installed Ubuntu successfully using rescue mode on the alternate cd, and let Ubuntu use an internal boot and home. At the final stage grub refused to install to the MBR, and then refused to install to my /boot partition on /dev/sda2. It said: No boot loader has been installed, either because you chose not to or because your specific architecture doesn't support a boot loader yet. You will need to boot manually with the /vmlinuz kernel on partition /dev/mapper/volumegroup-natty and root=/dev/mapper/volumegroup-natty passed as a kernel argument. Returning to debian, I did a update-grub, which detects Windows and Ubuntu:
[code]...
How do I make grub decrypt the LUKS partition before attempting to load the Ubuntu kernel?
View 3 Replies
ADVERTISEMENT
Mar 23, 2011
is there a way to give an application (controlaula) write access to a folder /var/lib/monitorprofe and files on that folder.
View 3 Replies
View Related
Feb 27, 2016
I have Debian and Virtual Box with another Debian. I have resized max size of vdi file with VBoxManage modifyhd but now I need to resize partition on virtual machine's system. I've downloaded GParted and I can run machine from this ISO as CD. Partition is encrypted on machine.Unfortunately GParted doesn't start with X so I have to use it in terminal. I can see partitions:
Code: Select allroot@debian:/# fdisk -l
Disk /dev/sda: 80 GiB, 85899345920 bytes, 167772610 sectors
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: dos
Disk identifier: 0x3914....
[code]....
So I though maybe I need to use this (URL...). I couldn't find similar tutorial about Debian or GParted but OK, it's just executing these commands, not modifying its source.list.But I cannot even do the update:
Code: Select allroot@debian:/# sudo apt-get update
Err: http://free.nchc.org.tw/debian sid InRelease
Temporary failure resolving 'free.nchc.org.tw'
Err2: http://free.nchc.org.tw/drbl-core drbl InRelease
Temporary failure resolving 'free.nchc.org.tw'
Reading package lists... Done
W: Failed to fetch http://free.nchc.org.tw/debian/dists/sid/InRelease Teporary failure resolving 'free.nchc.org.tw'
W: Failed to fetch http://free.nchc.org.tw/drbl-core/dists/drbl/InRelease Temporary failure resolving 'free.nchc.org.tw'
W: Some index files failed to download. They have been ignored, or old ones used instead.
So I check my internet connection. VirtualBox has 'attached to NAT' and before I run out of space on virtual machine, Debian could access internet. So it's only something about this GParted. I have modified /etc/resolv.conf with vi (even vim is not available). And it has two valid nameservers. I haven't restarted anything, as I'm not sure if I need to, after modifying resolv.conf file.But even in that case I cannot ping anything from GParted:
Code: Select allroot@debian:/# ping www.google.com
ping: unknown host www.google.com
How can I access internet from GParted and resize encrypted partition?
View 8 Replies
View Related
Feb 16, 2011
couldn't find anything similar on the forum.I am writing a kickstart for fedora 14 with a partition table similar to:
part / --asprimary --fstype="ext4" --size=10000 --encrypted --passphrase=pass1
part /boot --asprimary --fstype="ext4" --size=130
part /var --fstype="ext4" --size=5000 --encrypted --passphrase=pass1
[code]...
View 9 Replies
View Related
Nov 8, 2009
I need to access /etc/modprobe.d on an encrypted LVM LUKS partition. I m not sure how to go about it though. Mount usually handles my mounting needs, do I need to decrypt the physical volume first? LIst of commands need would make my day.
View 1 Replies
View Related
Feb 13, 2010
I encrypted my home partition with the YaST Partitioner tool, but now I can't access it anymore. After I encrypted it I rebooted the machine and thought that it would prompt me a password field to access the partition, but now I can't access it at all. I tried "mount -t ext4 /dev/sda7 /home" which gives me that error after I entered the password: "mount: wrong fs type, bad option, bad superblock on /dev/sda7, missing codepage or helper program, or other error In some cases useful info is found in syslog - try dmesg | tail or so"
The info I get from "dmesg | tail" is: "EXT4-fs (sda7): VFS: Can't find ext4 filesystem" Before I encrypted it I converted the /home partition from ext3 to ext4 without any problems and it worked properly. After playing around with it I also discovered that /dev/sda7 got wiped out of /etc/fstab, but I entered it again.
View 9 Replies
View Related
Apr 13, 2010
I want to give some web address to host file and except these web address no website will open. For example I give permission for [URL] and [URL]. The user just enter these 2 website. Other websites will be blocked.
View 6 Replies
View Related
Jun 3, 2015
I have a problem with my debian install. I 've got a laptop with 3 OS:
First I installed windows.
Then I installed ubuntu 15.04 in an encrypted partition, and another partition with /boot (/dev/sda6) created when I installed Ubuntu.
And, finally I installed Debian 8 in an encrypted LVM (/dev/sda8) with 3 partitions (/, /home and swap), and a /boot (/dev/sda7) partition created when I installed Debian.
Needless to say that both /boot partitions are not encrypted
Previously I had a similar configuration with ubuntu 14.04 and Debian wheezy.
The problem is that I can't start the system by using the Debian grub (/dev/sda7). So Ihave to boot the system using Ubuntu's grub (/dev/sa6). The second part of the problem is that when I boot Debian using /dev/sda6 (ubuntu's grub) , plymouth does not work.
I tried purging grub and reinstalling it again with the ubuntu partition mounted, and it did not work.
I did not have this problem with my previous configuration (with wheezy and xubuntu 14.04) ...
View 8 Replies
View Related
Oct 21, 2015
When I connect my Debian PC to my WiFi router my PC doesn't get internet if other devices are connected to it .
When i disconnect those devices and connect my Debian PC only then my PC connects to internet but other devices connected to it later do not get inernet connection.
When I connect my Debian PC using LAN Cable to the same router all devices work fine.
View 11 Replies
View Related
Sep 6, 2015
Debian encrypted LVM disappears every time on sda when I install any other also encrypted Linux distro on sdb.
How can I set up Debian that way that it wouldn't disappear or how can I recover it form UEFI?
View 1 Replies
View Related
Apr 4, 2011
When I installed Debian on this machine, I went with guided partitioning, encrypted lvm, and Debian defaulted to a 10GB / partition. I figured, hey, defaults are there for a reason, so left it alone.
Now that I need to shrink my /home and extend /, I'd like to do so as easily as possible. I installed system-config-lvm, read its man page ( which is really just a long description of the program, not much instruction ) and fired it up. Won't let me resize ( shrink ) /home, said files are in use.
Is there a way to use the nice pretty graphical tool, or do I need to boot to a non-X-using runlevel and log in as root, then muck about with CLI tools like lvresize and resize2fs?
View 2 Replies
View Related
May 16, 2011
I installed an old version on accident, I used an encrypted LVM. When I removed the old debian and started the installation of the new version, the encrypted partition could not be used to install, and the drive itself was creating an error message when I tried to mount the installation there. This is probably a vague explanation of what is happening, but does anyone know how to remove these encrypted LVM partitions?
View 2 Replies
View Related
May 2, 2015
I'm trying to install Debian on a USB to create an encrypted partition, I get an error message saying I need to install missing firmware rtl_nic rtl8168d-2.fw.So I download that file and try again this time I get an error " There was a problem reading data from CD Rom" .I not using a CD Rom I put debian on the USB as an ISO file first using Unebutin then tried Rufus.
View 12 Replies
View Related
Dec 30, 2015
I want to move my old system to a new drive. Currently I have Debian installed with following configuration:
I have an encrypted system where everything is encrypted except /boot. Currently I've /boot and / installed on a 16 GB mSata SSD and /home on a regulard HDD. I've got a 500GB SSD for Christmas and want to move the whole system to the new SSD.
I just wanted to ask if I've got the process required to to this down:
1. backup root-directory (/) without and /boot /home using tar keeping file-permissions and owners to ext. hard drive
2. backup /boot and /home separately using the same method
2. replace HDD with SSD remove mSATA SDD.
3. boot via live-usb
4. create appropriate volume groups, partitions, setup encryption etc.
5. extract backups to appropriate partitions
6. chroot to old /.
7. edit fstab
8. reinstall grub
9. create new init ram img.
I'm pretty sure I've got steps 1.-6. down but I'm very shaky on what to do next.
View 0 Replies
View Related
Jan 15, 2016
Is it better to install LUKS to raw disk (/dev/sdb) or disk partition (/dev/sdb1)? What are best LUKS options?
"cryptsetup benchmark" output
Code: Select allPBKDF2-sha1 1310720 iterations per second
PBKDF2-sha256 862315 iterations per second
PBKDF2-sha512 590414 iterations per second
[Code] ....
Is slow hash better or how to choose it? It is clear that aes-xts is best choise. Is 265 bit key good?
View 3 Replies
View Related
May 31, 2011
is it possible to mount a truecrypt file container as a home directory before login, if so how to do that?
View 3 Replies
View Related
May 14, 2010
I want to have /boot as an ext2 (I don't need journaling and I might want to undelete something) and all other partitions in an LVM.When the server starts it will prompt me for the LVM password. I would like to be able to contact the server using SSH (or using another secure method) and tell the password. Since /usr/sbin and all the other partitions are inside the LVM I guess I have a problem?
Is it possible to setup something like this? The SSH session for the LVM authentication does not have to be a daemon. It can be something which just sits and waits until I connect and input the password. And then the "real" SSH deamon kicks in.
View 3 Replies
View Related
Feb 1, 2016
I have two basically identical harddrives that are encrypted with LUKS containing a complete debian installation:
Code: Select allroot@x200s:/home/b# lsblk --fs
NAME FSTYPE LABEL UUID MOUNTPOINT
sda
├─sda1 ext2 0b851969-281e-4db2-8a5b-3798e801711b /boot
├─sda2
└─sda5 crypto_LUKS cfcf63ef-448a-4f72-9f58-8f7731cf3dfc
└─sda5_crypt LVM2_member 21CS3f-SQeQ-XcMr-kyDs-OPtR-egmT-HkvJAu
[Code] ....
sda is what I currently run to write this text, sdb is my former harddrive, connected via USB.
I want to access the root partition on sdb.
The problem is:
Code: Select allcryptsetup luksOpen /dev/sdb5 oldhd
Enter passphrase for /dev/sdb5:
root@x200s:/home/b# ls /dev/mapper/
control oldhd sda5_crypt x200s--vg-root x200s--vg-swap_1
root@x200s:/home/b# mount /dev/mapper/oldhd /mnt/
[b]mount: unknown filesystem type 'LVM2_member'[/b]
[Code] ..
Before all this, both sda and sdb where in the same volume group. I renamed the volume group of sdb to "oldDisk"
using
Code: Select allvgrename <UUID> oldDisk
How I can access the data on the root filesystem of my sdb..
View 2 Replies
View Related
Dec 7, 2015
I use a static compiled kernel and a fully encrypted disk apart from a boot partition. I have recompiled and installed kernels many times. When I tried with the latest kernel from Testing, 4.2.6, the system will not boot. Not only that but the previous kernel now does not boot. However, a stock modular kernel does boot. The static kernel hangs at:
Code: Select allVolume group "dk" not found
Cannot process volume group dk
/run/lvm/lvmetad.socket: connect failed: No such file or directory
WARNING: Failed to connect to lvmetad. Falling back to internal scanning.
Reading all physical volumes. This may take a while...
/run/lvm/lvmetad.socket: connect failed: No such file or directory
[Code] ....
And after giving the password the boot continues successfully. How to diagnose it further?
View 1 Replies
View Related
Aug 24, 2010
I am trying to create an encrypted file and later mount it as a filesystem.
KEY=`tr -cd [:graph:] < /dev/urandom | head -c 79`
echo $KEY | openssl aes-256-cbc > container.key
dd if=/dev/urandom of=~/container.img bs=1G count=10
losetup /dev/loop0 ~/container.img
[code]....
The luksOpen command asks me for my passphrase, but always rejects it. I have retried this several times and written down the passphrase - and even tried with a very simple one just to check. And I never can make it work.
View 2 Replies
View Related
Jun 28, 2011
how can I set the keyboard layout used by Debian to enter the password of my encrypted filesystem?
After my recent "aptitude upgrade", I have not been able to mount my encrypted filesystem anymore. I have discovered that the keyboard layout used to enter the password has changed. Problem is that with such layout I can't enter some of the characters composing the password. The encrypted filesystem looks intact, since I have been able to mount it and backup my files by means of a live CD. That means that I can edit any system file, if needed.
Every technique I have found to change layout cannot be employed in this case, since they rely on the system being up and running. I've tried editing /etc/default/keyboard, but that does not work.
View 2 Replies
View Related
Nov 4, 2010
I'm running Debian Squeeze AMD64 with full disk encryption and LVM. After reinstalling Windows 7 I lost GRUB from the MBR. I managed to install GRUB after following this guide and using an Ubuntu 10.04 graphical installation disc, but I only get to a GRUB CLI when booting, so I can't actually choose an OS there.
I tried following this guide but I'm stuck after "# Mount the partitions to /mnt/root" and don't know what to do.
Does anyone know how I can fix GRUB so I get to choose between Debian and Windows 7 there?
View 6 Replies
View Related
Oct 16, 2015
My laptop setup is:
sda1: W7
sda2: FAT16
sda3: /boot
sda4: encrypted LVM with debian (everything besides /boot)
now I've re-installed W7 so grub was overwritten. I've tried the procedure which worked for me previously:booting with the netinst usb in rescue mode, choosing a root partition to mount, using grub-install to reinstall the grub:
Code: Select allmount /dev/sda3 /boot
grub-install /dev/sda
Now I'm on Jessie (stable), and this time this fails, and I am able to mount only sda3.grub-install doesn't exit so I'm assuming it has been replaced by `grub-installer'. also '/boot' doesnt exist so I created it manually.
Code: Select allmount /dev/sda3 /boot
grub-installer /dev/sda
The latter fails with
Code: Select all/dev/sda/proc not a directory
View 6 Replies
View Related
Feb 11, 2011
I have 2 identical disks originally configured as a pair for a server. Each of the disks has 2 partitions dev/sdb1,dev/sdb2. The sdb1 partitions I had configured as a raid1 mirror. The sdb2 partitions were non-raid and used as extra misc. Space. Further, the raid setup is also encrypted using dm-crypt luks. Now I want to redeploy each of the disks for new purposes. One of the disks i want to deploy exactly as before (keeping the partitions and content), however without being part of a raid array.
I've successfully deployed this disk into a new system and I am mounting the dev/sdb1 partition as dev/md0 because the disk is set to autodetect raid. Actually I am using cryptsetup and mounting with mapper. Can I get rid of the setting for auto detect on this partition without losing the data, or breaking the encryption? I just want to mount the partition as a standalone encrypted disk. Is it as simple as doing crypt setup luksOpen /dev/sdb1 then mounting it with mapper? Or do I need to change the partition in some way. Or do I simply continue to operate it as a 'broken' raid array?
View 2 Replies
View Related
Jul 31, 2011
I am using Squessze and Gnome. When I try to use the gui System>Administration>Network or Users and Groups I get the error The configuration could not be loaded. You are not allowed to access the system configuration.Everything was working before. I read around a bit. In some cases,it was caused by mismatching group and password files after using the gui. I do not know how to check if they are matching. Of course I do not know for sure that is the problem in my case.
View 14 Replies
View Related
Oct 3, 2010
I was trying to get the Windows one working again. Here's what fdisk -l reads:
[Code]...
I'll change these or do some grub configurations, if anyone knows what ones can work.
View 1 Replies
View Related
Jun 7, 2010
I was messing around with the partitions and accidentally y deleted the ubuntu partition! I have Windows 7 as a dual boot but I can't access to that OS anymore. The message that I get is: error: no such partition. grub rescue>
View 5 Replies
View Related
Jul 30, 2010
Installing Debian on a new laptop and read that Debian-Installer (DI) can create an encrypted partition (/home) during installation.However, when I went through installation and started the manual partitioning (standard, non-lvm) , I am unable to locate the encryption option.
View 8 Replies
View Related
Mar 16, 2011
I know that boot partition is possible to create within debian distribution that has grub 2.0, as I have done before with ubuntu. I have been trying many different options with my preseed file but it keeps taking the boot partition out of LVM and creating and extended partition too and then creates the LVM primary partition.
### Partitioning.
# you can specify a disk to partition. The device name can be given in either
# devfs or traditional non-devfs format. For example, to use the first disk
[code]....
View 1 Replies
View Related
Sep 5, 2010
I have installed Windows 7 on my laptop . Now, it directly boot from Windows 7 . I think the MBR overwrote my grub . I have found two methods by google , but still does work .
1: boot from debian install CD, Alt +F2 switch to the console. "grub " "root (hd0,0)" "setup (hd0,0)".
2:boot from CD, mount /dev/scsi/host0/bus0/target0/lun0/part1 /mnt ; chroot /mnt ; grub-install /dev/sda.
View 7 Replies
View Related
