Mit Hilfe von VirtualBox kann man einen Desinfec't USB-Stick innerhalb eines laufenden (Linux) Systems (hier z.B. Ubuntu 16.04 LTS als Host) aktualisieren. Der Rechner muss nicht extra mit dem Desinfec't USB-Stick gestartet werden.
Eine Anregung dazu fand ich hier.
# im User Home: cd ~ sudo su # usermod -a -G disk christoph usermod -a -G vboxusers christoph VBoxManage internalcommands createrawvmdk -filename .VirtualBox/HardDisks/<NAME_DES_SYSTEMS>.vmdk -rawdisk /dev/disk/by-id/<ID-DES-SPEICHERS> # z.B. VBoxManage internalcommands createrawvmdk -filename /home/christoph/VirtualBox/HardDisks/desinfect_i386.vmdk -rawdisk /dev/disk/by-id/usb-Lexar_USB_Flash_Drive_14041516113600003877-0\:0 # oder #VBoxManage internalcommands createrawvmdk -filename /home/christoph/.VirtualBox/HardDisks/desinfect_i386.vmdk -rawdisk /dev/sdb -partitions 1 -relative # oder #VBoxManage internalcommands createrawvmdk -filename .VirtualBox/HardDisks/desinfect_i386.vmdk -rawdisk /dev/disk/by-id/usb-058f_6387_0878751A-0\:0 chown christoph:christoph .VirtualBox/HardDisks/desinfect_i386.vmdk lsusb echo "KERNEL==\"sd[b-z]*\",SUBSYSTEMS==\"usb\", ATTRS{idVendor}==\"VERNDOR-ID\", ATTRS{idProduct}==\"PRODUCT-ID\",SYMLINK+=\"usbhd%n\" MODE=\"0666\",OWNER=\"christoph\",GROUP=\"users\"" >> /etc/udev/rules.d/90-usbhd.rules chown root:root /etc/udev/rules.d/90-usbhd.rules chmod 644 /etc/udev/rules.d/90-usbhd.rules # systemctl restart udev systemctl restart udev.service # oder udevadm trigger
Anschließend kann der „neue Datenträger“ innerhalb von VirtualBox eingerichtet werden (Menü: „vorhandene Festplatte verwenden“).
Quelle: Heise-Security - Themen-Hilfe Desinfect-Stick unter Linux erstellen
# Loopback Mount des äußeren ISOs: sudo su mkdir /tmp/dvd mount -o loop,ro /pfad/zu/desinfect-202000-dvd.iso /tmp/dvd # USB-Stick finden lsblk # USB-Stick sei /dev/sdc dd if=/tmp/dvd/software/desinfect-202000-amd64.iso of=/dev/sdc # Sync und Unmount sync umount /tmp/dvd
Text hier …
sudo su mkdir -p /media/iso_image_mount mount -o loop ~/loop_image.img /media/loop_mount dd if=/media/iso_image_mount/software/desinfect-2018-amd64.iso of=/dev/sdb bs=512 sync #resize2fs -p /dev/sdb1 umount /media/iso_image_mount
–> siehe T&T zu c't Desinfec't 2015 unten
–> siehe unten
desinfect@desinfect:~$ sudo su root@desinfect:/home/desinfect# apt-get install unity-gtk2-module root@desinfect:/home/desinfect# cd Downloads/ root@desinfect:/home/desinfect# tar xfj veracrypt-1.17-setup.tar.bz2 root@desinfect:/home/desinfect# ./veracrypt-1.17-setup-gui-x86 root@desinfect:/home/desinfect# cd ./ root@desinfect:/home/desinfect# ln -s /usr/share/applications/veracrypt.desktop .local/share/applications/veracrypt.desktop
desinfect@desinfect:~$ sudo su root@desinfect:/home/desinfect# cd Downloads/ root@desinfect:/home/desinfect# wget https://download.heise.de/software/70a019131a3998a778ca4f2424d0f243/57488c46/126843/truecrypt-7.1a-linux-x86.tar.gz root@desinfect:/home/desinfect# tar xfz truecrypt-7.1a-linux-x86.tar.gz root@desinfect:/home/desinfect# ./truecrypt-7.1a-setup-x86
Das Kommentazeichen #
vor folgenden Zeilen entfernen:
sudo su nano /etc/apt/sources.list deb http://de.archive.ubuntu.com/ubuntu xenial main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu xenial-updates main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu xenial-security main restricted universe multiverse
sudo su apt-get update apt-get upgrade apt-get install mc apt-get install aptitude
desinfect@desinfect:~$ sudo su root@desinfect:/home/desinfect# cd Downloads/ root@desinfect:/home/desinfect/Downloads# wget https://launchpad.net/veracrypt/trunk/1.19/+download/veracrypt-1.19-setup.tar.bz2 root@desinfect:/home/desinfect/Downloads# tar xfj veracrypt-1.19-setup.tar.bz2 root@desinfect:/home/desinfect/Downloads# ./veracrypt-1.19-setup-gui-x86 root@desinfect:/home/desinfect# cd ~ root@desinfect:/home/desinfect# ln -s /usr/share/applications/veracrypt.desktop .local/share/applications/veracrypt.desktop
* TrueCrypt 7.1a als x86
-Version von der Heise Webseite (Bereich Downloads) https://www.heise.de/download/ herunterladen
desinfect@desinfect:~$ sudo su root@desinfect:/home/desinfect# cd Downloads/ root@desinfect:/home/desinfect# tar xfz truecrypt-7.1a-linux-x86.tar.gz root@desinfect:/home/desinfect# ./truecrypt-7.1a-setup-x86
desinfect@desinfect:~$ sudo gedit /etc/apt/sources.list ----- deb http://de.archive.ubuntu.com/ubuntu trusty main restricted universe multiverse #deb-src http://de.archive.ubuntu.com/ubuntu trusty main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu trusty-updates main restricted universe multiverse #deb-src http://de.archive.ubuntu.com/ubuntu trusty-updates main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu trusty-security main restricted universe multiverse #deb-src http://de.archive.ubuntu.com/ubuntu trusty-security main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu trusty-backports main restricted universe multiverse #deb-src http://de.archive.ubuntu.com/ubuntu trusty-backports main restricted universe multiverse ----- desinfect@desinfect:~$ sudo apt-get update
Quelle: http://www.heise.de/forum/heise-Security/Themen-Hilfe/Desinfect/Re-Wie-bindet-man-Truecrypt-ein/posting-20907860/show/ TrueCrypt 7.1a, February 7, 2012
desinfect@desinfect:~$ sudo apt-get install desinfect-truecrypt desinfect@desinfect:~$ md5sum /usr/bin/truecrypt a05ef9705b0e5d44256da5e1aff3688b /usr/bin/truecrypt desinfect@desinfect:~$ sudo cp /var/cache/apt/archives/desinfect-truecrypt_20150529-1_i386.deb /opt/desinfect/signatures/deb/
desinfect@desinfect:~$ sudo apt-get install mc desinfect@desinfect:~$ sudo apt-get install aptitude desinfect@desinfect:~$ sudo cp /var/cache/apt/archives/*.deb /opt/desinfect/signatures/deb/
root@desinfect:/# mkdir -p /media/sda5 root@desinfect:/# mkdir -p /media/sdb1 root@desinfect:/# mount -o ro /dev/sda5 /media/sda5/ root@desinfect:/# mount -o ro /dev/sdb1 /media/sdb1/ # oder anders herum root@desinfect:/# mount -o rw,remount /dev/sda5 root@desinfect:/# mount -o rw,remount /dev/sdb1
Folgendes Skript herunterladen …
#!/bin/bash # # echo -n "Lege neue sources.list mit Paketquellen an ..." cat <<EOF >> /etc/apt/sources.list # # Quelle: http://repogen.simplylinux.ch/ # deb http://www.heise.de/ct/projekte/desinfect/ubuntu 2013 main #deb http://archive.ubuntu.com/ubuntu precise main restricted #deb http://security.ubuntu.com/ubuntu precise-updates main restricted #deb http://security.ubuntu.com/ubuntu precise-security main restricted ############################################################# ################### OFFICIAL UBUNTU REPOS ################### ############################################################# ###### Ubuntu Main Repos deb http://de.archive.ubuntu.com/ubuntu/ precise main restricted universe multiverse deb-src http://de.archive.ubuntu.com/ubuntu/ precise main restricted universe multiverse ###### Ubuntu Update Repos deb http://de.archive.ubuntu.com/ubuntu/ precise-security main restricted universe multiverse deb http://de.archive.ubuntu.com/ubuntu/ precise-updates main restricted universe multiverse deb-src http://de.archive.ubuntu.com/ubuntu/ precise-security main restricted universe multiverse deb-src http://de.archive.ubuntu.com/ubuntu/ precise-updates main restricted universe multiverse ###### Ubuntu Partner Repo deb http://archive.canonical.com/ubuntu precise partner deb-src http://archive.canonical.com/ubuntu precise partner ###### Ubuntu Extras Repo deb http://extras.ubuntu.com/ubuntu precise main deb-src http://extras.ubuntu.com/ubuntu precise main ############################################################## ##################### UNOFFICIAL REPOS ###################### ############################################################## ###### 3rd Party Binary Repos #### Opera - http://www.opera.com/ ## Run this command: sudo wget -O - http://deb.opera.com/archive.key | sudo apt-key add - deb http://deb.opera.com/opera/ stable non-free #### PlayOnLinux - http://www.playonlinux.com/en ## Run this command: wget -q "http://deb.playonlinux.com/public.gpg" -O- | sudo apt-key add - deb http://deb.playonlinux.com/ precise main #### Ubuntu Tweak - http://ubuntu-tweak.com/ ## Run this command: sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0624A220 deb http://ppa.launchpad.net/tualatrix/ubuntu precise main #### Unsettings - http://www.florian-diesch.de/software/unsettings/ ## Run this command: sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0FEB6DD9 deb http://ppa.launchpad.net/diesch/testing/ubuntu precise main ####### 3rd Party Source Repos #### Ubuntu Tweak (Source) - http://ubuntu-tweak.com/ ## Run this command: sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0624A220 deb-src http://ppa.launchpad.net/tualatrix/ubuntu precise main #### Unsettings (Source) - http://www.florian-diesch.de/software/unsettings/ ## Run this command: sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0FEB6DD9 deb-src http://ppa.launchpad.net/diesch/testing/ubuntu precise main EOF echo " Done"
… ausführbar machen
chmod +x add-repositories.sh
und starten:
./add-repositories.sh
Opera Repository Schlüssel hinzufügen:
wget -O - http://deb.opera.com/archive.key | sudo apt-key add -
PlayonLinux Schlüssel hinzufügen:
wget -q "http://deb.playonlinux.com/public.gpg" -O- | sudo apt-key add -
Ubuntu Schlüssel hinzufügen
apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0624A220 apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0FEB6DD9
Update der Paketquellen durchführen:
apt-get update
echo -n "Installiere aptitude ..." apt-get install aptitude echo " Done"
echo -n "Installiere Midnight Commander ..." apt-get install mc echo " Done"
Terminal Fenster öffnen: STRG + ALT + T
sudo su wget http://www.truecrypt.org/download/truecrypt-7.1a-linux-x86.tar.gz tar xfz truecrypt-7.1a-linux-x86.tar.gz ./truecrypt-7.1a-setup-x86 -> Install TrueCrypt -> Accept... license terms -> OK -> Press Enter to exit ... truecrypt <Enter> ;-)
Foreneintrag bei Heise: http://www.heise.de/forum/heise-Security/Themen-Hilfe/Desinfect/Re-truecrypt-verschluesselte-Partition-scannen/posting-424098/show/