![]() ![]() As you can see, each and every partition - except, of course, the /boot partition - is encrypted. The yellow padlocks with “TC” are encrypted with TrueCrypt in Windows. Each padlock indicates an encrypted partition. I wish I had sized them differently in hindsight, but you can do it however you want. Partition layout for dual booting Fedora 10 and Windows Vista with TrueCrypt I thought about how to split up my drive and after a while, I came up with this: You cannot use it for this.) I strongly encourage the use of a Gparted LiveCD or LiveUSB. (Windows Vista’s partition editor is NOT powerful enough. You’ll have to partially complete the Fedora setup in order to get to it, apply the changes to the disk, then exit setup because Fedora shouldn’t be installed first. If you don’t want to use Gparted, Fedora 10’s installer comes with a partition editor. You are going to wipe the hard disk totally clean and reformat it very soon. Installation discs of the OSes you wish to installĮasyBCD to modify the Windows boot loader (There's a free version.)īack up your data. you don't need as many partitions as I used.Ī computer with at least one hard disk you are willing to wipe clean (Back up your data first, of course.) The folks over at SuperUser probably know more about this.įigure out how you're going to partition your hard drive ahead of time. Re-partition your hard drive in-place, or add another drive for Red Hat. This might allow Truecrypt on the Windows side to mount your Linux files. You might consider using Truecrypt to encrypt at least your Linux /home directory and let native Linux encryption protect the /swap partition, for example. I'm not sure how to mount native Linux-encrypted partitions from Windows, so my setup was rather one-way. ![]() I didn't use Truecrypt on the Linux side except to mount the Windows partitions. In the end, my boot process looked like this:ĭiagram of full-disk encrypted dual-boot process (yellow boxes are encrypted partitions padlocks are another layer of security) Possible adjustments for your situation On boot, the user will authenticate with TrueCrypt then be taken to the Windows boot loader where the option Vista or Linux (actually GRUB) becomes available. TrueCrypt’s boot loader goes into the MBR. We install TrueCrypt which takes over the Windows boot loader. This will merely be available for us to boot to later. We install GRUB (Fedora’s boot loader), but not to the MBR. This is what the computer will boot to first. We install and use Windows’ default boot loader to the MBR. (<3 Truecrypt)įiles can be shared between encrypted operating systems (with password).Įach and every partition is encrypted, even swap file. Windows likes to be installed first and only on a partition flagged as “bootable” (or, if no partitions are flagged “bootable” at all)Īfter the initial boot loader prompt, mounting various encrypted partitions could be automated with scripts. TrueCrypt doesn’t play well with Grub or any non-Windows boot loader. TrueCrypt can’t encrypt an entire drive that has multiple partitions, OSes, and various file systems when it only runs on one Primary partitions are the only partitions the system can boot fromĮach extended partition counts as a primary partition. Primary partitions are the only ones that OSes can be installed to (Windows, anyway). My notebook’s hard disk could only contain 4 primary partitions. So here we go: Problems overcome by the method described here You will have to adjust them for your situation. so take a few things with a grain of "salt" (no pun intended) and don't hold me responsible. ![]() This was more an experiment than an expert exposé. Also note that in my case, I started from scratch on a drive I had erased. Your case is more complex because you have 3 existing OS'es and you want to add another onto your drive.īecause I've never attempted this on the magnitude of 4 operating systems, I'll leave most of it up to you (the actual re-partitioning and such) and will try to take the general security principles from my experience and apply them to your situation. It was a bit involved (mostly because Windows Vista doesn't "play well with others" and doesn't like being installed second), but in the end I found a method that suited me. I did this a few years ago with Fedora 10 and Windows Vista to demonstrate how all the intricacies fit together. (But it sure was fun to figure this all out.) Before you read all this, remember that this technique is at least 5 years old - it's probably much easier by now (see the other answers).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |