From 64522cf3dc84d949808c629b9d5ae81ff928b944 Mon Sep 17 00:00:00 2001 From: Silvio Rhatto Date: Sun, 3 Jul 2016 13:53:47 -0300 Subject: Updates docs --- index.mdwn | 39 +++++++++++---------------------------- references.mdwn | 1 - todo.mdwn | 5 ++--- tutorial.mdwn | 3 ++- 4 files changed, 15 insertions(+), 33 deletions(-) diff --git a/index.mdwn b/index.mdwn index 9ecc199..9337e16 100644 --- a/index.mdwn +++ b/index.mdwn @@ -42,31 +42,8 @@ Just clone And then leave it somewhere, optionally adding it to your `$PATH` environment variable or package it to your preferred distro. -Current workflow ----------------- - -Based on the [Hydra Suite](https://hydra.fluxo.info). - -Creating the repository: - - hydra example bootless init admin.example.org:bootless.git - hydra example bootless git pull - hydra example bootless git commit -a - -Creating an image: - - hydra example bootless image - -Create image file: - - hydra example bootless image output.iso - -Record directly: - - hydra example bootless image /dev/sdb - -Proposed workflow ------------------ +Workflow +-------- Initialize: @@ -74,9 +51,9 @@ Initialize: Create an image: - boootless image output.iso + boootless image bootless.iso -Write image to thumb drive +Write image to thumb drive: boootless image @@ -84,6 +61,12 @@ Check device/image signatures: bootless check +Customization +------------- + +- Place your custom images into `custom` folder. +- Edit `custom/custom.cfg` to suit your needs. + Threat Model ------------ @@ -99,4 +82,4 @@ Threat Model 4. From inside threats such as preloaded backdoors in the hardware, the best you can do is to look for open hardware and try to build stuff yourself :P -- Check your boot using something like [anti-evil-maid](http://theinvisiblethings.blogspot.com.br/2011/09/anti-evil-maid.html) ([repository](https://github.com/QubesOS/qubes-antievilmaid)) or [smartmonster](https://git.fluxo.info/smartmonster). +- Check your boot using something like [anti-evil-maid](http://theinvisiblethings.blogspot.com.br/2011/09/anti-evil-maid.html) ([repository](https://github.com/QubesOS/qubes-antievilmaid)), [smartmonster](https://git.fluxo.info/smartmonster) ([original repository](https://github.com/ioerror/smartmonster)) or [chkboot](https://wiki.archlinux.org/index.php/Dm-crypt/Specialties#chkboot). diff --git a/references.mdwn b/references.mdwn index 87166bd..d63fb94 100644 --- a/references.mdwn +++ b/references.mdwn @@ -12,7 +12,6 @@ Grub: Boot: - [Auto-booting and Securing a Linux Server with an Encrypted Filesystem](http://serverfault.com/questions/34794/auto-booting-and-securing-a-linux-server-with-an-encrypted-filesystem). -- [Smartmonster](https://github.com/ioerror/smartmonster) / [chkboot](https://wiki.archlinux.org/index.php/Dm-crypt/Specialties#chkboot). - [#348147 - Allow subscripts to alter ROOT (was: Add support for cryptoroot) - Debian Bug report logs](https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=348147) ([crypt_root and real_root on gentoo](http://wiki.gentoo.org/wiki/Genkernel)). Images: diff --git a/todo.mdwn b/todo.mdwn index 0dad928..808aba2 100644 --- a/todo.mdwn +++ b/todo.mdwn @@ -1,5 +1,4 @@ [[!meta title="TODO"]] -- Package. -- Credits. -- Split bootless script from hydra suite but preserve integration. +- Always diff grub.cfg. +- Implement per image/device signature checking. diff --git a/tutorial.mdwn b/tutorial.mdwn index a67b645..a47efef 100644 --- a/tutorial.mdwn +++ b/tutorial.mdwn @@ -5,7 +5,8 @@ This tutorial helps you to build a Grub USB stick to boot your operating systems Create basic folder structure ----------------------------- - mkdir -p /tmp/bootless/{grub,custom} + mkdir -p /tmp/bootless/{grub,custom} + ln -s . /tmp/bootless/boot wget https://git.fluxo.info/bootless/plain/templates/grub.cfg -O /tmp/bootless/grub/grub.cfg wget https://git.fluxo.info/bootless/plain/templates/custom.cfg -O /tmp/bootless/grub/custom.cfg -- cgit v1.2.3