1 00:00:00,000 --> 00:00:07,000 Okay, so now that we understand why tails is non-persistent by default, why you might want to use 2 00:00:07,000 --> 00:00:13,000 persistence and the warnings and the things that you want to keep in mind while using persistence. 3 00:00:13,000 --> 00:00:17,000 Let's go ahead and see how to enable it and how to use it. 4 00:00:17,000 --> 00:00:20,000 So I have tails right here. 5 00:00:20,000 --> 00:00:28,000 And to enable persistent storage, we're going to go to applications tails, and we're going to click 6 00:00:28,000 --> 00:00:30,000 on Persistence Storage. 7 00:00:30,000 --> 00:00:32,000 This will open the Persistence Wizard. 8 00:00:34,000 --> 00:00:37,000 It's also asking me for a passphrase. 9 00:00:37,000 --> 00:00:41,000 This is the passphrase that will be used to encrypt the storage. 10 00:00:42,000 --> 00:00:48,000 Make sure you pick something that is difficult to guess and difficult to brute force, but make sure 11 00:00:48,000 --> 00:00:51,000 it's also easy for you to remember. 12 00:00:52,000 --> 00:00:54,000 So I'm going to put my passphrase. 13 00:00:54,000 --> 00:00:57,000 I'm going to verify it in the second box. 14 00:00:57,000 --> 00:01:03,000 And once you're ready, you can click on Create to create the persistent storage. 15 00:01:04,000 --> 00:01:11,000 And once done, you will get a menu like this one right here which will ask you to what exactly you 16 00:01:11,000 --> 00:01:14,000 want to save in this persistent volume. 17 00:01:14,000 --> 00:01:19,000 So by default, you can see personal data is set to on. 18 00:01:19,000 --> 00:01:25,000 And what this will do, it will actually create a directory that you'll be able to see here in places 19 00:01:25,000 --> 00:01:27,000 called persistent. 20 00:01:27,000 --> 00:01:34,000 And anything you store in this directory will be persistent and will not be removed when you restart 21 00:01:34,000 --> 00:01:36,000 or shut down tails. 22 00:01:37,000 --> 00:01:40,000 Now, you can take any of these as you wish. 23 00:01:40,000 --> 00:01:43,000 For example, if you want to store your bookmarks, you want to take this. 24 00:01:43,000 --> 00:01:49,000 If you want to store the settings you set for your network connections, you want to take this. 25 00:01:49,000 --> 00:01:55,000 So, for example, if you connect to a Wi-Fi network, it will remember the password because otherwise 26 00:01:55,000 --> 00:01:59,000 with the installation that we have right now, the Wi-Fi settings are not stored. 27 00:01:59,000 --> 00:02:02,000 So you'll have to connect to the same network. 28 00:02:02,000 --> 00:02:06,000 If you are connecting to the same network every time you boot into tales. 29 00:02:07,000 --> 00:02:12,000 The additional software will not remove any software you install on tells. 30 00:02:12,000 --> 00:02:19,000 Now, you want to be careful about this because like I said, if hackers install software on your installation, 31 00:02:19,000 --> 00:02:21,000 then that software will also be persistent. 32 00:02:21,000 --> 00:02:25,000 So make sure you only turn this on if you know what you're doing. 33 00:02:26,000 --> 00:02:27,000 You have other options. 34 00:02:27,000 --> 00:02:32,000 For example, for printers, for Thunderbird, which is a mail Client GnuPG. 35 00:02:32,000 --> 00:02:35,000 The electron Bitcoin wallet. 36 00:02:35,000 --> 00:02:41,000 And basically turning on persistence for any of these programs will store anything you do within these 37 00:02:41,000 --> 00:02:43,000 programs and store all the settings. 38 00:02:44,000 --> 00:02:50,000 So I'm actually going to turn it on for Electron because I might want to store some keys in this Bitcoin 39 00:02:50,000 --> 00:02:52,000 wallet and I wouldn't want them to be deleted. 40 00:02:53,000 --> 00:02:59,000 I'm going to do the same with GnuPG because again, I might have some passwords in here or keys that 41 00:02:59,000 --> 00:03:03,000 I don't want them to be deleted when I restart or boot into tails. 42 00:03:03,000 --> 00:03:11,000 Again, I'll do this for Thunderbird as well and for pigeon just in case I actually go ahead and modify 43 00:03:11,000 --> 00:03:16,000 the settings of any of these programs or store something in these programs. 44 00:03:16,000 --> 00:03:17,000 I don't want it to be deleted. 45 00:03:17,000 --> 00:03:21,000 I want it to be stored every time I boot into tails. 46 00:03:21,000 --> 00:03:27,000 So like I said, go through these options, see which programs you might want to use and turn them on 47 00:03:27,000 --> 00:03:28,000 accordingly. 48 00:03:29,000 --> 00:03:33,000 Now, don't worry about these programs that I didn't really speak about. 49 00:03:33,000 --> 00:03:39,000 We will go through a lot of these programs as we go through the course and you'll learn exactly what 50 00:03:39,000 --> 00:03:40,000 they can be used for. 51 00:03:41,000 --> 00:03:45,000 Now I'm going to close this and I'm going to restart. 52 00:03:47,000 --> 00:03:55,000 And now when you get to the welcome Wizard of Tails, you'll see we have an extra option in here. 53 00:03:55,000 --> 00:04:03,000 So right now we can put the passphrase here and unlock the persistent storage or just click on start 54 00:04:03,000 --> 00:04:07,000 tails to start it normally without unlocking the storage. 55 00:04:07,000 --> 00:04:13,000 So it'll work exactly like we've seen in previous lectures with no persistence at all. 56 00:04:13,000 --> 00:04:20,000 So right now I actually want to unlock the persistent storage, so I'm going to put the passphrase that 57 00:04:20,000 --> 00:04:24,000 I created when I created the storage and I'm going to click on Unlock. 58 00:04:26,000 --> 00:04:29,000 As you can see, it's telling us that the storage is unlocked. 59 00:04:29,000 --> 00:04:37,000 And now if I start Tales, I should have access to this persistent storage and be able to store files 60 00:04:37,000 --> 00:04:43,000 in my persistent directory and all the settings that I'm going to change within the programs that I 61 00:04:43,000 --> 00:04:47,000 picked will still be stored even if I restart Tales. 62 00:04:48,000 --> 00:04:55,000 So if I go to places now, you will see we have an extra directory called Persistent. 63 00:04:56,000 --> 00:05:01,000 And anything we place in this directory will not be removed when we restart. 64 00:05:02,000 --> 00:05:03,000 Tails So let's try this. 65 00:05:03,000 --> 00:05:10,000 I'm going to right click and create a new folder and let's call this persistence test. 66 00:05:12,000 --> 00:05:19,000 So we have this new folder here and I'm going to create a new folder on the desktop and we'll call this 67 00:05:19,000 --> 00:05:20,000 test two. 68 00:05:21,000 --> 00:05:28,000 So when I restart tells now, test two should be removed because it's stored outside of the persistent 69 00:05:28,000 --> 00:05:31,000 storage and persistent test in here. 70 00:05:31,000 --> 00:05:33,000 Should still be here. 71 00:05:34,000 --> 00:05:40,000 I'm just going to do this to help you understand how to use this persistent storage so you can put any 72 00:05:40,000 --> 00:05:47,000 files that you don't want them to be removed in here, and then anything you store outside of this directory 73 00:05:47,000 --> 00:05:51,000 will be securely wiped every time you turn off tails. 74 00:05:52,000 --> 00:05:58,000 I'm also going to go ahead and connect to a Wi-Fi network because remember, when I configured persistence, 75 00:05:58,000 --> 00:06:05,000 I chose to store the network settings so any settings I make should be persistent and should not be 76 00:06:05,000 --> 00:06:08,000 reset when I restart tails. 77 00:06:08,000 --> 00:06:14,000 So I'm going to go to my Wi-Fi settings and I'm going to click on Select Network. 78 00:06:14,000 --> 00:06:21,000 I'm going to select my network and connect, put the password connect. 79 00:06:22,000 --> 00:06:25,000 And as you can see, the icon is restored. 80 00:06:25,000 --> 00:06:27,000 It's telling me tour is ready. 81 00:06:27,000 --> 00:06:33,000 And if I look in here, wired, disconnected, and Wi-Fi is connected to my network, too. 82 00:06:33,000 --> 00:06:41,000 So now when I restart the test in here, the test directory should be removed because it's outside of 83 00:06:41,000 --> 00:06:43,000 the persistent storage. 84 00:06:43,000 --> 00:06:51,000 The persistent test here should still be here because it's inside the persistent storage, and I should 85 00:06:51,000 --> 00:06:58,000 automatically connect to this network because I configured my network settings to be persistent. 86 00:06:58,000 --> 00:07:05,000 So this will go to show you that all of the programs that I turned on, the persistent option to will 87 00:07:05,000 --> 00:07:09,000 store any settings or anything that I do in them. 88 00:07:09,000 --> 00:07:12,000 So let's go ahead and restart. 89 00:07:13,000 --> 00:07:17,000 Okay, so we're back at the login screen again. 90 00:07:17,000 --> 00:07:24,000 As usual, I'm going to put my password in here to unlock the persistent volume unlock that's unlocked. 91 00:07:24,000 --> 00:07:24,000 Perfect. 92 00:07:25,000 --> 00:07:26,000 Now we're going to start it. 93 00:07:27,000 --> 00:07:29,000 And perfect, as you can see. 94 00:07:29,000 --> 00:07:33,000 First of all, we don't see the test directory that we created here. 95 00:07:33,000 --> 00:07:38,000 This is good because we created it outside of our persistent volume. 96 00:07:38,000 --> 00:07:43,000 Now let's go to places and go to our persistent volume. 97 00:07:45,000 --> 00:07:49,000 And as you can see, we do have the persistent directory right here. 98 00:07:49,000 --> 00:07:50,000 This is perfect. 99 00:07:50,000 --> 00:07:55,000 This should still be here because we created this inside the persistent volume. 100 00:07:55,000 --> 00:08:02,000 So if you stored any other files in here, you'll always be able to see them when you start tales. 101 00:08:03,000 --> 00:08:08,000 Let's go ahead and check if we automatically connect it to our Wi-Fi network. 102 00:08:08,000 --> 00:08:12,000 And perfect, as you can see it, automatically connected. 103 00:08:13,000 --> 00:08:19,000 Like I said, without persistent, you would have had to connect to your target network every time you 104 00:08:19,000 --> 00:08:22,000 start tales because the network settings won't be stored. 105 00:08:23,000 --> 00:08:29,000 This is just an example of all the other applications which we enabled persistent for. 106 00:08:29,000 --> 00:08:35,000 So right now I can use any of the other applications that I enabled persistence for, and anything I 107 00:08:35,000 --> 00:08:40,000 do on these applications will be stored even after I restart Tales. 108 00:08:41,000 --> 00:08:42,000 So this is perfect. 109 00:08:42,000 --> 00:08:45,000 Right now I have the best of both worlds. 110 00:08:45,000 --> 00:08:49,000 I can store files in a specific encrypted volume. 111 00:08:49,000 --> 00:08:56,000 I can also store some settings that I specifically chose and everything else will be securely wiped 112 00:08:56,000 --> 00:08:58,000 every time I turn off the machine. 113 00:08:58,000 --> 00:09:06,000 Not only that, but I still have the option of using tales with no persistence exactly as we seen in 114 00:09:06,000 --> 00:09:07,000 previous lectures. 115 00:09:08,000 --> 00:09:16,000 Let me restart and all I have to do is basically just start tales without unlocking the persistent volume. 116 00:09:16,000 --> 00:09:24,000 So right here, all I have to do is literally ignore this and just click on Start Tales and this will 117 00:09:24,000 --> 00:09:29,000 start it for me in the normal mode without mounting the persistent volume. 118 00:09:29,000 --> 00:09:34,000 So I won't even have access to the file stored in the persistent directory. 119 00:09:35,000 --> 00:09:41,000 So now even if I go to places, I don't even have a directory called Persistent. 120 00:09:42,000 --> 00:09:49,000 And just to confirm, if I go to my network settings, you'll see that it's detecting that I have a 121 00:09:49,000 --> 00:09:55,000 Wi-Fi adapter, but it's not automatically connecting to my network, even though that we can detect 122 00:09:55,000 --> 00:10:03,000 the network because the network settings are not accessible, because we started Tales without mounting 123 00:10:03,000 --> 00:10:05,000 the persistent volume. 124 00:10:06,000 --> 00:10:14,000 So right now we have an installation of tails on a USB stick that we can use as an amnesic live operating 125 00:10:14,000 --> 00:10:18,000 system where nothing gets stored once you shut it down. 126 00:10:18,000 --> 00:10:25,000 And if we wanted to, we can unlock the persistent volume which will allow us to store files in a specific 127 00:10:25,000 --> 00:10:32,000 location, and it will also allow us to restore the settings for the programs that we enabled persistence 128 00:10:32,000 --> 00:10:33,000 for. 129 00:10:33,000 --> 00:10:41,000 And keep in mind, all of these settings and all of these files are stored in an encrypted volume that 130 00:10:41,000 --> 00:10:45,000 is encrypted with a passphrase that we pick ourselves. 131 00:10:46,000 --> 00:10:54,000 Now, if for any reason you wanted to delete the persistence storage, all you have to do is go to applications 132 00:10:54,000 --> 00:11:01,000 again, two tales Persistence, storage and click on Delete. 133 00:11:01,000 --> 00:11:03,000 This will ask you if you really want to do this. 134 00:11:03,000 --> 00:11:04,000 I'm going to say yes. 135 00:11:04,000 --> 00:11:05,000 Delete it for me please. 136 00:11:06,000 --> 00:11:06,000 And that's it. 137 00:11:07,000 --> 00:11:08,000 Now it's deleted. 138 00:11:08,000 --> 00:11:16,000 So now if you restart you won't even get the option to unlock the persistence volume because it is deleted.