GlobaLeaks icon indicating copy to clipboard operation
GlobaLeaks copied to clipboard

Published 20 hours ago verified publisher icon globaleaks

Integrate Linux disk encryption in GlobaLeaks

Open fpietrosanti opened this issue 11 years ago • 9 comments

Currently the [Installation Guide] doesn't support installing globaleaks over a disk encrypted system with Linux encryption stuff.

This ticket is to extend the installation procedure and init-script to support disk encryption (basically, having /var/globaleaks on a LUKS encrypted partition).

fpietrosanti avatar Apr 17 '13 18:04 fpietrosanti

This would require also an improvement of the init script and/or of globaleaks that must be aware of the encrypted disk, if present.

fpietrosanti avatar Jul 02 '13 10:07 fpietrosanti

We may do that from within globaleaks application code: http://pages.cs.wisc.edu/~lenz/luks/

fpietrosanti avatar Jul 05 '13 04:07 fpietrosanti

This feature, to enable globaleaks to be resilient against application restart (but not against server reboot), must store the key in ramdisk.

This behavior (whenever to temporary store the key into ramdisk) must be configurable from /etc/default/globaleaks

fpietrosanti avatar Oct 13 '13 10:10 fpietrosanti

Would it make sense to add TRESOR[1] support for this?

[1] http://www1.informatik.uni-erlangen.de/tresor

DrWhax avatar Oct 31 '13 09:10 DrWhax

@DrWhax Added #691 for Tresor support, because it's deliverable is independent from this ticket because it does require a kernel rebuild.

fpietrosanti avatar Oct 31 '13 10:10 fpietrosanti

Encryption could be done using the Ubuntu mechanism for homedirectory encryption, relying on underlying system and scripts to handle unlocking of homedir, relying on the PAM authentication integration: http://www.howtogeek.com/116032/how-to-encrypt-your-home-folder-after-installing-ubuntu/ https://help.ubuntu.com/community/EncryptedHome http://ubuntuforums.org/showthread.php?t=2131716

fpietrosanti avatar Mar 18 '14 11:03 fpietrosanti

This ticket s going to require splitting the GlobaLeaks software with the "main globaleaks" and a "supervisor" that will take care of all of the extraordinary initialization steps.

fpietrosanti avatar Apr 23 '14 06:04 fpietrosanti

I do not consider of any interest having globaleaks being aware of this.

I consider that we could close this ticket in favour of one about creating documentation on how to prepare an encrypted server with the common distributions and referring to the official guidelines of ubuntu/debian/tails

evilaliv3 avatar Dec 16 '16 13:12 evilaliv3

@evilaliv3 the only way to have a full encryption of the globaleaks data with the globaleaks design (not requiring any kind of command line uses of linux) is the automatic setup and handling for startup/shutdown of an encrypted disk by GlobaLeaks. Unfortunately even SQLite encryption does not provide the very same level of protection of data directory disk encryption, so it has to be kept as an option

fpietrosanti avatar Dec 16 '16 14:12 fpietrosanti