- User Since
- Aug 20 2019, 1:56 PM (32 w, 18 h)
Fri, Mar 27
Thu, Mar 26
As of 22.214.171.124.7, the following behavior is observed:
Sun, Mar 22
Ok, so you want me to:
- boot a Whonix-Host ISO
- Install on HDD
- Reboot on Whonix-Host ISO, do some stuff, shutdown
- See if HDD has been modified (why would it be?)
Whonix Live ISO runs without an HDD.
I am not sure what you want to test here? Please precise.
Do you mean: starting an installed version in live-mode (not tested, not supported yes) or starting a Whonix-Host iso file?
Sub pages or sub chapters of 1 wiki page?
Tue, Mar 17
Do you know how to run calamares hook scripts? I think I saw this before but I can't find it anymore. Or we have to invent our own mini calamares module similar to how package calamares-settings-debian invented new calamares modules?
https://www.whonix.org/wiki/Whonix-Host is probably a good place to write all documentation.
Should we consider closing this task since Calamares installer provides the option of full disk encryption?
Mon, Mar 16
Where do you want me to write the documentation? In the Whonix wiki?
I think that is only here:
There are two read-only parameters:
Sun, Mar 15
I could help with this task once it's ready (soon hopefully).
I guess images will be set to kvm images read-only when booted in live iso mode (and probably live mode too). But once installed, images are still set to live mode. That would be probably kvm images read-only is set when run in iso live mode, cached in RAM and then installed to local disk?
Fixed by adding
I added whoami in the script and it confirmed it runs as root.
Yes, it should be run by root. Maybe it is run by root but somehow the changes don't take place as they should. More debugging could help.
It seems that https://github.com/Whonix/whonix-libvirt/blob/master/usr/lib/whonix-libvirt/live-mode-to-read-only is not ran by root. Thus it cannot get the virsh list --all (returns void) nor change the VM xml configuration file.
Thu, Mar 12
It is possible to automatize grml-debootstrap with full-disk encryption. Nothing too hard. I could hack together a semi-working bash script after a couple of hours of online documentation.