Last edited by cyberdog (2017-11-11 08:27:57)
https://community.parrotsec.org/viewtopic.php?pid=3737#p3737
[I edited the following instructions for persistent USB partitions for clarity.]
If you mess up or want to wipe the persistent partition so you can start from fresh:
Reboot your pc, and load the USB (with Parrot installed from Etcher) from boot options.
Select LIVE from the Parrot GRUB menu.
Once the desktop appears, open a terminal.
Type: sudo su
Type: gparted
(or select “System Tools” -->> “Gparted” from Parrot’s “Application” menu).
Use “Device Information” from the “View” menu to select the proper USB device. DO NOT mess this up.
Find the partition labeled "persistence; if you don’t see it, recheck “Device Information” to be sure you have the correct USB device. Navigate to other devices in order to find the partition labeled “persistence”. For safety, remove any USB or other removable storage devices, EXCEPT FOR THE PARROT SYSTEM USB, until these operations are complete.
Right click on the “persistence” partition and select “Delete” to remove it from the drive, thus leaving unallocated space.
From the “Edit” menu, select “Apply All Operations”
Right click on the empty (unallocated) partition again, and select “New”.
Check the amount of drive space you want to set for the persistent partition. It takes lots of space to both add new packages, and to do a full system upgrade on these rolling Debian distros (sudo apt full-upgrade
), so I recommend allocating 8-12 gigabytes.
Type: “persistence” (without quotes) in the label field.
From the “Edit” menu, select “Apply All Operations”
If you want to set up a separate persistent data partition for your personal files, repeat all the above steps for freeing up drive space (i.e., unallocated space) and setting up a new partition, except substitute the partition label “data” instead of “persistence”.
Be sure to “Apply All Operations”
Wait for Gparted to update and show your completed handiwork, and then close the Gparted app.
Now, in the terminal, type: sudo su
Next, copy and enter the following one line at a time into the terminal:
cryptsetup --verbose --verify-passphrase luksFormat /dev/sdb3
<<-- Be sure to substitute the name of YOUR partition that you previously identified above; e.g., sdc1
Cryptsetup will ask you to type YES in capitals, and then create a new passphrase for your encrypted partition. If this fails (because both entries of your passphrase did not match), repaste the above Cryptsetup command after the terminal prompt and repeat the passphrase submission.
Once the passphrase has been verified, then proceed pasting and entering the following, one line at a time:
cryptsetup luksOpen /dev/sdb3 my_usb
<<-- Be sure to substitute the name of YOUR partition that you previously identified above; e.g., sdc1
<-- Enter the passphrase you set earlier when asked.
mkfs.ext4 -L persistence /dev/mapper/my_usb
e2label /dev/mapper/my_usb persistence
mkdir -p /mnt/my_usb
mount /dev/mapper/my_usb /mnt/my_usb
echo "/ union" > /mnt/my_usb/persistence.conf
umount /dev/mapper/my_usb
cryptsetup luksClose /dev/mapper/my_usb
If you want to set up a separate data partition on your persistent USB drive, repeat all the steps above, except substitute “data” for “persistence” in the following terminal command:
e2label /dev/mapper/my_usb persistence
and omit the following command from the sequence:
echo "/ union" > /mnt/my_usb/persistence.conf
Now reboot your system using the following terminal command:
reboot
Once rebooted, load the Parrot USB from boot options, and select “Encrypted Persistence” from the GRUB menu.
Enter the password for your persistent drive and Parrot will load a virgin OS desktop.
For more details on Live, Encrypted-Persistence installations see my past posts: VM software on Parrot OS, and Running Tails in a VM inside Parrot 3.11