Babu wanda ya tsere wanda dole ne ku nema inganta tsaro na kayan aikin mu yadda ya kamata, duka na kwamfyutocin tebur da kwamfyutocin cinya, kodayake a game da na ƙarshen yana da mahimmanci kai tsaye-musamman idan muka yi amfani da su don aiki- tunda gaskiyar ɗaukar su daga wannan zuwa wancan wani wurin yana ƙaruwa damar rasa shi ko kuma sace shi daga gare mu, kuma a cikin waɗannan lamura duka bayanan mu na iya fallasa kuma sakamakon hakan zai zama da gaske.
Sauran hanyoyin a wannan ma'anar 'yan ne, kuma wannan shine kyakkyawan abu game da software kyauta a gaba ɗaya, kodayake a cikin wannan yanayin ina so in yi magana game da shi DM-Crypt LUKS, maganin ɓoyewa sanannen sananne ne na dogon lokaci saboda gaskiyar cewa an haɗa shi a cikin kwaya a matsayin tsari - yana ba da dama ga Crypto APIs na kwayar linux- kuma bayar buyayyar bayanan sirri da kuma iya taswirar na'urori da bangare a cikin matakan toshe na kama-da-wane, don haka kyalewa ɓoye ɓoyayyun abubuwa, dukkan rumbun kwamfutoci masu ƙarfi, RAID mai juzu'i, ma'ana mai ma'ana, fayiloli ko tafiyarwa mai cirewa.
Don farawa muna buƙatar da bangare kyauta (a halin da nake ciki, / dev / sda4), don haka idan ba haka ba to dole ne mu ƙirƙiri sabon bangare ta amfani da kayan aiki kamar GParted. Da zarar mun sami sarari kyauta zamu fara ne shigar da rubutun idan bamu da wannan kayan aikin, wanda galibi galibi galibi ana haɗa shi da tsoho amma watakila idan muka girka namu Ubuntu mun zabi don ƙaramin shigarwa:
# apt-samun shigar cryptsetup
Yanzu bari mu fara da qaddamar da bangare me zamu je encrypt, wanda muke amfani da wannan bangare na kyauta wanda muka ambata a baya. Wannan mataki ne wanda kuma ke haifar da mabuɗin farko, kuma kodayake sunansa yana nuna cewa an tsara ɓangaren da ba zai faru ba, amma kawai yana shirya shi don aiki tare da ɓoyewa (a cikin yanayinmu mun zaɓi don AES mai girman maƙalli na baiti 512:
# cryptsetup –verbose –verbose –cipher aes-xts-plain64 –key-size 512 –hash sha512 –iter-time 5000 –use-random-luksFormat / dev / sda4
Za mu karɓi saƙon gargaɗi inda aka sanar da mu cewa abubuwan da muka adana a wannan lokacin a ciki / dev / sda4, kuma ana tambayarmu idan mun tabbata. Mun yarda da rubuta YES, kamar wannan a cikin manyan baƙaƙe, sannan kuma ana buƙatar mu shigar da kalmar LUKS, sau biyu don tabbatar da cewa babu kuskure.
Yanzu muna 'buɗe' ɓoyayyen akwatin, yayin ba shi suna na kamala, wanda zai zama wanda ya bayyana tare da shi a cikin tsarin (misali lokacin da muke aiwatar da umarnin df -h don duba bangarori daban-daban, a cikin yanayinmu zamu gan shi a cikin / dev / mapper / ɓoyayyen bayanan):
# crytpsetup luksOpen / dev / sda4 rufaffen
Ana tambayar mu da Maballin LUKS cewa mun ƙirƙira shi a baya, muna shigar dashi kuma a shirye muke. Yanzu dole ne mu ƙirƙiri tsarin fayil don wannan ɓoyayyen ɓoye:
# mkfs.ext3 / dev / mapper / zane
Mataki na gaba shine thisara wannan bangare zuwa fayil / sauransu / crypttab, kwatankwacin / sauransu / fstab tunda tana da alhakin samar da ɓoyayyun ɓoyayyiyar hanyar farawa:
# cryto_test / dev / sda4 babu luks
Bayan haka zamu kirkiro dutsen wannan ɓoyayyen ɓoye kuma ƙara dukkan bayanan zuwa fayil ɗin / etc / fstab domin mu sami komai tare da kowane sake yi:
# mkdir / mnt / rufaffen
# nano / sauransu / fstab
Dingara abubuwa masu zuwa ya zama daidai, kodayake waɗanda ke neman keɓaɓɓun abubuwa na iya duba shafukan fstab mutum (man fstab) inda akwai bayanai da yawa game da shi:
/ dev / mapper / rufaffen / mnt / ɓoyayyen ɓoyayyiyar ext3 0 2
Yanzu, duk lokacin da muka sake kunna tsarin za a umarce mu da mu shigar da jumla, kuma bayan mun yi hakan za a bude bangarorin da aka rufa domin mu samu su.
Godiya ga labarinku.
Ina da matsala, ban sani ba idan hakan ya faru da mutane da yawa kamar ni:
Na bi matakan da kuka yi dalla-dalla kuma bayan na tabbatar da cewa an girka shi sai na fara magana ta biyu ->
cryptsetup –verbose –verbose –cipher aes-xts-plain64 –key-size 512 –hash sha512 –iter-time 5000 –use-random-luksFormat / dev / sda4
cryptsetupup: Aikin da ba a sani ba
Ina amfani da Kubuntu 15.04. Duk wani ra'ayin yadda za'a warware shi.
Gracias