Monthly Archives: June 2017

Removing potential backdoors from Tails 3.0

The default Tails 3.0 bootable ISO includes proprietary binary blobs running on network hardware. They may contain backdoors and are silently loaded when Tails boots. There is no known exploit at this date but it may take years before they … Continue reading

Posted in tails | 2 Comments

Run SecureDrop tests without Vagrant

Assuming a virgin installation of Ubuntu 14.04, the SecureDrop repository and its dependencies can be installed with the following: sudo apt-get update sudo apt-get install -y python-virtualenv git sudo apt-get install -y build-essential libssl-dev libffi-dev python-dev virtualenv /tmp/v source /tmp/v/bin/activate … Continue reading

Posted in SecureDrop | Leave a comment

Shrink an OpenStack image

After a while openstack image create creates increasingly large files because the blocks used and freed are not trimmed and it is not uncommon for hypervisors to not support fstrim. The image can be shrinked and the virtual machine recreated … Continue reading

Posted in openstack | Leave a comment

installing tails with kvm

For test purposes it is useful to bootstrap tails using virtual machines and files. Here is how it can be done with KVM. $ wget ‘’ $ wget ‘’ $ gpg –keyserver –recv-key BA2C222F44AC00ED9899389398FEC6BC752A3DB6 $ gpg –verify tails-amd64-3.3.iso.sig tails-amd64-3.3.iso … Continue reading

Posted in tails | Leave a comment

Installing python-crush on CentOS 7 without network

To install python-crush on a CentOS 7 that does not have access to internet, the necessary files must be downloaded via an USB drive. The python34-pip package must be installed from the EPEL repository the machine uses for maintenance purposes. … Continue reading

Posted in crush | Leave a comment