configure.mdwn 7.36 KB
Newer Older
1
[[!meta title="Create & Configure the Persistent Volume"]]
2
3
4

[[!inline pages="doc/first_steps/persistence.caution" raw="yes"]]

Tails developers's avatar
Tails developers committed
5
6
[[!toc levels=2]]

7
8
Start the Persistent Volume Assistant
=====================================
9

10
To start the persistent volume assistant, choose
11
12
13
14
15
16
17
18
19
<span class="menuchoice">
  <span class="guimenu">Applications</span>&nbsp;▸
  <span class="guisubmenu">Tails</span>&nbsp;▸
  <span class="guimenuitem">Configure persistent storage</span></span>.

<!--
FIXME-0.11: Error, Persistence partition is not unlocked.
-->

20
21
Creating the Persistent Volume
==============================
22
23

When run for the first time, or after [[deleting the persistent
24
volume|delete]], the assistant proposes to create a new persistent volume on
25
26
the USB stick from which Tails is running.

27
1. The persistent volume is an encrypted partition protected by a passphrase.
28
29
30
31
32
33
34
35
36
37
38
Specify a passphrase of your choice in both the
<span class="guilabel">Passphrase</span> and <span class="guilabel">Verify
Passphrase</span> text boxes.

2. Click on the <span class="guilabel">Create</span> button.

3. Wait for the creation to finish.

<div class="bug">

<strong>If the creation is interrupted before it finishes</strong>, you may not
Tails developers's avatar
Tails developers committed
39
be able to start Tails from this USB stick any more. This can happen if you
40
close the window of the wizard or unplug the USB stick during the creation of
41
the persistent volume. [[Erase|first_steps/resetting_a_usb_stick]] and
42
43
44
45
46
47
48
49
50
51
52
[[reinstall|first_steps/usb_installer]] Tails to fix this issue.

<!--
FIXME-0.11:
  for i in 2 60 62 63 ; do
     sgdisk /dev/YOUR_STICK --attributes=1:set:$i
  done
-->

</div>

53
54
Persistent Volume Features
==========================
55

56
When run from a USB stick that already has a persistent volume, the assistant
57
shows a list of the possible persistent features. Each feature corresponds to a
58
set a files to be saved in the persistent volume.
59
60
61
62
63
64
65

<div class="note">
<strong>Restart Tails to apply the changes</strong> after selecting or
unselecting one or several features.
</div>

<div class="bug">
Tails developers's avatar
Tails developers committed
66
67
If you unselect a feature that used to be activated, it will be
deactivated after restarting Tails but the corresponding files will
68
remain on the persistent volume.
69
70
71
72
</div>

<div class="icon">
<div class="image"><img src="../stock_folder.png"/></div>
Tails developers's avatar
Tails developers committed
73
<div class="text"><h2>Personal Data</h2></div>
74
75
76
77
78
79
80
81
82
</div>

When this feature is activated, you can save your personal files and working
documents in the <span class="filename">Persistent</span> folder.

To open the <span class="filename">Persistent</span> folder, choose
<span class="menuchoice">
  <span class="guimenu">Places</span>&nbsp;▸
  <span class="guimenuitem">Home Folder</span></span>, and open the <span
83
  class="guilabel">Persistent</span> folder.
84
85
86

<div class="icon">
<div class="image"><img src="../seahorse-key.png"/></div>
Tails developers's avatar
Tails developers committed
87
<div class="text"><h2>GnuPG</h2></div>
88
89
90
</div>

When this feature is activated, the OpenPGP keys that you create or import are
91
saved in the persistent volume.
92
93

<div class="caution">
Tails developers's avatar
Tails developers committed
94
95
96
If you manually edit or overwrite the
<span class="filename">~/.gnupg/gpg.conf</span> configuration file
you may lessen your anonymity,
97
98
99
100
101
weaken the encryption defaults or render GnuPG unusable.
</div>

<div class="icon">
<div class="image"><img src="../seahorse-key-ssh.png"/></div>
Tails developers's avatar
Tails developers committed
102
<div class="text"><h2>SSH Client</h2></div>
103
104
105
</div>
    
When this feature is activated, all the files related to the secure-shell client
106
are saved in the persistent volume:
107
108
109
110
111
112

  - The SSH keys that you create or import
  - The public keys of the hosts you connect to
  - The SSH configuration file in <span class="filename">~/.ssh/config</span> 

<div class="caution">
Tails developers's avatar
Tails developers committed
113
114
115
116
If you manually edit the <span class="filename">~/.ssh/config</span>
configuration file, make sure not to overwrite the
default configuration from the
<span class="filename">/etc/ssh/ssh_config</span> file. Otherwise, you may weaken the
117
118
119
120
121
encryption defaults or render SSH unusable.
</div>

<div class="icon">
<div class="image"><img src="../pidgin.png"/></div>
Tails developers's avatar
Tails developers committed
122
<div class="text"><h2>Pidgin</h2></div>
123
124
125
</div>

When this feature is activated, all the configuration files of the
126
127
<span class="application">Pidgin</span> Internet messenger are saved in the
persistent volume:
128
129
130

  - The configuration of your accounts, buddies and chats.
  - Your OTR encryption keys and keyring.
Tails developers's avatar
Tails developers committed
131
  - The content of the discussions is not saved unless you configure
132
133
134
135
136
137
138
    <span class="application">Pidgin</span> to do so.

All the configuration options are available from the graphical interface. There
is no need to manually edit or overwrite the configuration files.

<div class="icon">
<div class="image"><img src="../claws-mail.png"/></div>
Tails developers's avatar
Tails developers committed
139
<div class="text"><h2>Claws Mail</h2></div>
140
141
142
</div>

When this feature is activated, the configuration and emails stored locally by
143
144
the <span class="application">Claws Mail</span> email client are saved in the
persistent volume.
145
146
147
148
149
150

All the configuration options are available from the graphical interface. There
is no need to manually edit or overwrite the configuration files.

<div class="icon">
<div class="image"><img src="../seahorse-key-personal.png"/></div>
Tails developers's avatar
Tails developers committed
151
<div class="text"><h2>GNOME Keyring</h2></div>
152
153
154
</div>

When this feature is activated, the secrets of
155
156
<span class="application">GNOME Keyring</span> are saved in the persistent
volume.
157
158
159
160
161
162
163
164

GNOME Keyring is a collection of components in GNOME that store secrets,
passwords, keys, certificates and make them available to applications.
For more information about <span class="application">GNOME Keyring</span> see
the [official documentation](http://live.gnome.org/GnomeKeyring).

<div class="icon">
<div class="image"><img src="../synaptic.png"/></div>
Tails developers's avatar
Tails developers committed
165
<div class="text"><h2>APT Packages</h2></div>
166
167
168
169
</div>

When this feature is activated, the packages that you install using the
<span class="application">Synaptic</span> package manager or the
170
<span class="command">apt-get</span> command are saved in the persistent volume.
171

172
173
174
If you install additional programs, this feature allows you to download them
once and reinstall them during future working sessions, even offline.
Note that those packages are not automatically installed when restarting Tails.
175
176
177
178
179
180

If you activate this feature, it is recommended to activate the
<span class="guilabel">APT Lists</span> feature as well.

<div class="icon">
<div class="image"><img src="../synaptic.png"/></div>
Tails developers's avatar
Tails developers committed
181
<div class="text"><h2>APT Lists</h2></div>
182
183
184
</div>

When this feature is activated, the lists of all the software packages available
185
for installation are saved in the persistent volume.
186
187
188
189
190
191
192

Those so called <span class="emphasis">APT lists</span> correspond to the files
downloaded while doing
<span class="guilabel">Reload</span> from the
<span class="application">Synaptic</span> package manager or issuing the
<span class="command">apt-get update</span> command.

193
194
195
196
The <span class="emphasis">APT lists</span> are needed to install additional
programs or explore the list of available software packages. This feature allows
you to reuse them during future working sessions, even offline.

197
198
<div class="icon">
<div class="image"><img src="../preferences-desktop.png"/></div>
Tails developers's avatar
Tails developers committed
199
<div class="text"><h2>Dotfiles</h2></div>
200
201
202
203
</div>

When this feature is activated, all the files in the
<span class="filename">Dotfiles</span> folder are linked in the <span
204
205
class="filename">Home Folder</span>. This allows you to save in the persistent
volume the configuration files of other programs than the ones proposed by the
206
207
208
209
210
existing features.

<!--
FIXME-0.11: Custom directory
-->