oxeo0/opsec-blogposts
1
0
Fork 0
mirror of http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/opsec-blogposts.git synced 2025-06-08 05:19:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

update the kicksecure tutorials to include how to setup the host OS

Browse source
This commit is contained in:
nihilist 2025-05-24 21:44:04 +02:00
parent e2cd8d43d1
commit d83710b817
16 changed files with 62 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

42
linux/index.md
View file

@ -126,15 +126,16 @@ Boot device Selection > **his USB stick**
Once we selects his USB Stick, Bob can now boot from it, and he is greeted by kicksecure's welcome screen:
![](22.png)
![alt text](image.png)
And from there, Bob installs linux as per his needs:
![](23.png) ![](24.png) ![](25.png) ![](26.png) ![](28.png)
![alt text](image-1.png)
![](24.png) ![](25.png) ![](26.png) ![](28.png)
And there, we finished the kicksecure installation, we can unplug the USB stick, and click done to reboot the computer, into the newly installed kicksecure Host OS:
![](52.png)
As we reboot the computer, we're greeted by the kicksecure boot screen, and then we type the password to unlock the encrypted system drive:
@ -148,3 +149,38 @@ And that's it! Bob has managed to get privacy from Microsoft's constant surveill
![](2.png)
## Making sure that the main user has sudo rights
Kicksecure by default separates the regular user and the admin user on the boot option level, however for the clientside Host OS I don't think we need that separation, so we select the "remove user-sysmaint-split" boot option, to enable [the unrestricted admin mode](http://www.w5j6stm77zs6652pgsij4awcjeel3eco7kvipheu6mtr623eyyehj4yd.onion/wiki/Unrestricted_admin_mode):
![alt text](image-2.png)
Once in that boot option, we type "yes" to confirm that we want the change:
![alt text](image-3.png)
Here we close the terminal window once it confirms us that we can close the window:
![alt text](image-4.png)
Then it'll automatically reboot and enter the default user session, except that this time the user will have sudo rights by default.
![alt text](image-5.png)
once back in the Kicksecure Host OS, we now setup a password for the user:
![alt text](image-8.png)
![alt text](image-9.png)
Once the sudo password is set for the user, we close the window:
![alt text](image-10.png)
And then we disable the autologin aswell:
![alt text](image-11.png)
That way, you'll be able to lock your computer whenever you're not next to it, and require to type a password to get back into it.