1
00:00:01,030 --> 00:00:08,830
OK so now that we understand why Thales is not persistent by default why you might want to use persistence

2
00:00:09,220 --> 00:00:14,090
and the warnings and the things that you want to keep in mind while using persistence.

3
00:00:14,500 --> 00:00:18,750
Let's go ahead and see how to enable it and how to use it.

4
00:00:18,790 --> 00:00:20,950
So I have tails right here.

5
00:00:21,100 --> 00:00:29,350
And to enable persistent storage we're going to go to applications tails and we're going to click on

6
00:00:29,350 --> 00:00:35,020
configure persistent volume this will open the persistence wizard.

7
00:00:35,020 --> 00:00:36,620
It will give you a warning.

8
00:00:36,810 --> 00:00:40,680
Pretty much all the stuff that I mentioned in the previous lecture.

9
00:00:40,700 --> 00:00:47,010
It will also tell us how much of the memory stick will be used to create the persistent storage.

10
00:00:47,010 --> 00:00:56,310
So I have a 32 gigabyte U.S. B flash drive as you can see on 20 of this will be used to create the persistent

11
00:00:56,310 --> 00:00:57,780
volume.

12
00:00:57,780 --> 00:01:00,690
It's also asking me for a passphrase.

13
00:01:00,720 --> 00:01:05,600
This is the passphrase that will be used to encrypt the storage.

14
00:01:05,760 --> 00:01:12,570
Make sure you pick something that is difficult to guess and difficult to brute force but make sure it's

15
00:01:12,570 --> 00:01:15,510
also easy for you to remember.

16
00:01:15,900 --> 00:01:18,360
So I'm going to put my passphrase.

17
00:01:18,360 --> 00:01:21,450
I'm going to verify it in the second box.

18
00:01:21,540 --> 00:01:29,560
And once you're ready you can click on create to create the persistent storage and once done you will

19
00:01:29,560 --> 00:01:37,360
get a menu like this one right here which will ask you to what exactly you want to save in this persistent

20
00:01:37,360 --> 00:01:38,740
volume.

21
00:01:38,740 --> 00:01:45,730
So by default you can see personal data is set to on and what this will do it will actually create a

22
00:01:45,930 --> 00:01:50,790
directory that you'll be able to see here in places called persistent.

23
00:01:50,950 --> 00:01:58,390
And anything you store in this directory will be persistent and will not be removed when you restart

24
00:01:58,420 --> 00:01:59,630
or shut down tables.

25
00:02:00,280 --> 00:02:04,500
So right now you can see I don't have it because persistence is not enabled.

26
00:02:04,540 --> 00:02:10,990
Once I do once I restart keeping this on you'll see I'll have a new directory in here which I can use

27
00:02:10,990 --> 00:02:13,140
to store my files.

28
00:02:13,180 --> 00:02:18,700
Now you can take any of these as you wish for example if you want to store your bookmarks you want to

29
00:02:18,700 --> 00:02:25,120
take this if you want to store the settings you set for your network connections you want to take this.

30
00:02:25,120 --> 00:02:31,030
So for example if you connect to a Wi-Fi network it will remember the password because otherwise with

31
00:02:31,030 --> 00:02:35,610
the installation that we have right now the Wi-Fi settings are not stored.

32
00:02:35,680 --> 00:02:41,080
So you'll have to connect to the same network if you are connecting to the same network every time you

33
00:02:41,080 --> 00:02:48,420
booth into tells the additional software will not remove any software you install on tables.

34
00:02:48,420 --> 00:02:54,600
Now you wanna be careful about this because like I said if hackers install software on your installation

35
00:02:54,870 --> 00:02:57,540
then that software will also be persistent.

36
00:02:57,540 --> 00:03:01,020
So make sure you only turn this on if you know what you're doing.

37
00:03:02,180 --> 00:03:08,450
You have other options for example for printers for Thunderbird which is a mail client and you P.G.

38
00:03:08,750 --> 00:03:12,810
the electron Bitcoin wallet and basically turn it on.

39
00:03:12,810 --> 00:03:18,530
Persistence for any of these programs will store anything you do within these programs and store all

40
00:03:18,530 --> 00:03:20,150
the settings.

41
00:03:20,150 --> 00:03:25,820
So I'm actually going to turn it on for electron because I might want to store some keys in this bitcoin

42
00:03:25,820 --> 00:03:29,050
wallet and I wouldn't want them to be deleted.

43
00:03:29,070 --> 00:03:31,430
Am I going to do the same with JNU PGE.

44
00:03:31,460 --> 00:03:37,370
Because again I might have some passwords in here or keys that I don't want them to be deleted when

45
00:03:37,370 --> 00:03:40,420
I restart or boot into tails again.

46
00:03:40,700 --> 00:03:48,020
I'll do this for Thunderbird as well as for pigeon just in case I actually go ahead and modify the settings

47
00:03:48,020 --> 00:03:51,780
of any of these programs or store something in these programs.

48
00:03:51,830 --> 00:03:53,420
I don't want it to be deleted.

49
00:03:53,450 --> 00:03:57,460
I want it to be stored every time I boot into tails.

50
00:03:57,470 --> 00:04:04,190
So like I said go through these options see which programs you might want to use and turn them on accordingly

51
00:04:05,480 --> 00:04:09,000
now don't worry about these programs that I didn't really speak about.

52
00:04:09,060 --> 00:04:14,730
We will go through a lot of these programs as we go through the course and you'll learn exactly what

53
00:04:14,730 --> 00:04:15,990
they can be used for.

54
00:04:17,100 --> 00:04:22,170
So once you're done with selecting the files and the settings that you don't want them to be removed

55
00:04:22,200 --> 00:04:25,320
or reset click on save.

56
00:04:25,320 --> 00:04:25,880
And that's.

57
00:04:25,890 --> 00:04:27,810
We're done now.

58
00:04:27,900 --> 00:04:34,320
The persistent volume will not actually be active or usable until we restart tails.

59
00:04:34,680 --> 00:04:44,680
So I'm going to close this and I'm going to restart and now when you get to the welcome wizard of tales

60
00:04:44,980 --> 00:04:48,490
you'll see we have an extra option in here.

61
00:04:48,610 --> 00:04:55,760
So right now we can put the passphrase here and unlock the persistent storage or just click on star

62
00:04:55,760 --> 00:04:59,950
tails to start it normally without unlocking this storage.

63
00:04:59,950 --> 00:05:05,690
So it'll work exactly like we've seen in previous lectures with no persistence at all.

64
00:05:06,760 --> 00:05:12,790
So right now I actually want to unlock the persistent storage so I'm going to put the passphrase that

65
00:05:12,790 --> 00:05:20,770
I created when I created the storage and I'm going to click on unlock as you can see it's still us that

66
00:05:20,780 --> 00:05:22,440
the storage is unlocked.

67
00:05:22,550 --> 00:05:29,960
And now if I start tails I should have access to this persistent storage and be able to store files

68
00:05:30,050 --> 00:05:36,260
in my persistent directory and all the settings that I'm going to change within the programs that I

69
00:05:36,260 --> 00:05:45,490
picked will still be stored even if I restart tells so if I go to places now you will see we have an

70
00:05:45,520 --> 00:05:54,200
extra directory called persistent and anything we place in this directory will not be removed when we

71
00:05:54,200 --> 00:05:55,750
restart tails.

72
00:05:55,820 --> 00:05:56,840
So let's try this.

73
00:05:56,840 --> 00:06:00,670
I'm going to right click and create a new folder.

74
00:06:00,920 --> 00:06:09,170
And that's called this persistence test so we have this new folder here and I'm going to create a new

75
00:06:09,170 --> 00:06:19,360
folder on the desktop and we'll call this test to so when I restart tells now test two should be removed

76
00:06:19,390 --> 00:06:26,980
because it's stored outside of the persistent storage and persistent test in here should still be here

77
00:06:28,180 --> 00:06:34,360
I'm just going to do this to help you understand how to use this persistent storage so you can put any

78
00:06:34,360 --> 00:06:41,050
files that you don't want them to be removed in here and then anything you store outside of this directory

79
00:06:41,230 --> 00:06:46,480
will be securely wiped every time you turn off tables.

80
00:06:46,480 --> 00:06:52,300
I'm also going to go ahead and connect to a Wi-Fi network because remember when I configured persistence

81
00:06:52,600 --> 00:06:59,620
I chose to store the network settings so any settings I make should be persistent and should not be

82
00:06:59,620 --> 00:07:02,330
reset when I restart tales.

83
00:07:02,380 --> 00:07:08,270
So I'm going to go to my Wi-Fi settings and I'm going to click on select network.

84
00:07:08,770 --> 00:07:18,950
I'm going to select my network and connect put the password connect and as you can see the icon is restored.

85
00:07:18,950 --> 00:07:26,870
It's telling me Tor is ready and if I look in here wired disconnected and Wi-Fi is connected to my network

86
00:07:26,870 --> 00:07:27,820
too.

87
00:07:27,860 --> 00:07:35,090
So now when I restart the test in here the test directory should be removed because it's outside of

88
00:07:35,090 --> 00:07:36,860
the persistent storage.

89
00:07:37,100 --> 00:07:44,990
The persistent test here should still be here because it's inside the persistent storage and I should

90
00:07:45,050 --> 00:07:51,620
automatically connect to this network because I configured my network settings to be persistent.

91
00:07:52,670 --> 00:07:59,030
So this will go to show you that all of the programs that I turned on the persistent option to will

92
00:07:59,030 --> 00:08:08,260
store any settings or anything that I do in them so let's go ahead and restart Okay so we're back at

93
00:08:08,260 --> 00:08:10,800
the log in screen again.

94
00:08:10,810 --> 00:08:19,640
As usual I'm going to put my password in here to unlock the persistent volume unlock that's unlocked.

95
00:08:19,640 --> 00:08:20,210
Perfect.

96
00:08:20,210 --> 00:08:27,170
Now we're going to started and perfect as you can see first of all we don't see the test directory that

97
00:08:27,170 --> 00:08:28,560
we created here.

98
00:08:28,580 --> 00:08:33,110
This is good because we created it outside of our persistent volume.

99
00:08:33,920 --> 00:08:43,730
Now let's go to places and go to our persistent volume and as you can see we do have the persistent

100
00:08:43,730 --> 00:08:45,120
directory right here.

101
00:08:45,140 --> 00:08:46,070
This is perfect.

102
00:08:46,070 --> 00:08:51,040
This should still be here because we created this inside the persistent volume.

103
00:08:51,140 --> 00:08:58,610
So if you stored any other files in here you'll always be able to see them when you start tales.

104
00:08:58,670 --> 00:09:05,870
Let's go ahead and check if we automatically connected to our Wi-Fi network and perfect as you can see

105
00:09:06,140 --> 00:09:08,660
it automatically connected.

106
00:09:08,660 --> 00:09:14,540
Like I said with that persistent you would have had to connect to your target network every time you

107
00:09:14,540 --> 00:09:18,710
start tales because the network settings won't be stored.

108
00:09:18,710 --> 00:09:24,560
This is just an example of all the other applications which we enabled persistent for.

109
00:09:24,560 --> 00:09:30,270
So right now I can use any of the other applications that I enabled persistence for.

110
00:09:30,270 --> 00:09:37,070
And anything I do on these applications will be stored even after I restart tales.

111
00:09:37,100 --> 00:09:43,790
So this is perfect right now I have the best of both worlds I can store files in a specific encrypted

112
00:09:43,790 --> 00:09:44,470
volume.

113
00:09:44,600 --> 00:09:51,380
I can also store some settings that I specifically chose and everything else will be securely wiped

114
00:09:51,470 --> 00:09:54,200
every time I turn off the machine.

115
00:09:54,200 --> 00:09:59,810
Not only that but I still have the option of using tables with no persistence.

116
00:09:59,810 --> 00:10:00,430
Exactly.

117
00:10:00,430 --> 00:10:08,150
As we've seen in previous lectures all I have to do is let me restart and all I have to do is basically

118
00:10:08,180 --> 00:10:13,310
just start tales without unlocking the persistent volume.

119
00:10:13,310 --> 00:10:21,820
So right here all I have to do is literally ignore this and just click on star tales and this all started

120
00:10:21,820 --> 00:10:28,660
for me in the normal mode without mounting the persistent volume so I won't even have access to the

121
00:10:28,660 --> 00:10:32,300
files stored in the persistent directory.

122
00:10:32,320 --> 00:10:38,380
So now even if I go to places I don't even have a directory called persistent.

123
00:10:38,860 --> 00:10:46,300
And just to confirm if I go to my network settings you'll see that it's detecting that I have a Wi-Fi

124
00:10:46,300 --> 00:10:53,110
adapter but it's not automatically connecting to my network even though that we can detect the network

125
00:10:53,410 --> 00:11:01,030
because the network settings are not accessible because we started tales without mounting the persistent

126
00:11:01,030 --> 00:11:02,830
volume.

127
00:11:03,120 --> 00:11:11,280
So right now we have an installation of tables on a USB stick that we can use as an amnesiac live operating

128
00:11:11,280 --> 00:11:13,640
system where nothing gets stored.

129
00:11:13,680 --> 00:11:20,490
Once you shut it down and if we wanted to we can unlock the persistent volume which will allow us to

130
00:11:20,490 --> 00:11:27,630
store files in a specific location and it will also allow us to restore the settings for the programs

131
00:11:27,870 --> 00:11:29,880
that we enabled persistence for.

132
00:11:31,080 --> 00:11:38,340
And keep in mind all of the settings and all of these files are stored in an encrypted volume that is

133
00:11:38,340 --> 00:11:43,790
encrypted with a passphrase that we pick ourselves.

134
00:11:43,960 --> 00:11:51,580
Now if for any reason you wanted to delete the persistent storage all you have to do is go to applications

135
00:11:51,670 --> 00:11:58,360
again two tails and click on delete persistent volume.

136
00:11:58,360 --> 00:12:00,490
This will ask you if you really want to do this.

137
00:12:00,490 --> 00:12:03,420
I'm going to say yes delete it for me please.

138
00:12:03,520 --> 00:12:04,120
And that's it.

139
00:12:04,120 --> 00:12:05,470
Now it's deleted.

140
00:12:05,500 --> 00:12:12,880
So now if you restart you won't even get the option to unlock the persistence value because it is deleted.