How to install and use VeraCrypt on Tails
Requirements
Setup guide
Step 1: boot to Tails
Heads-up: if keyboard layout of computer isn’t “English (US)”, set “Keyboard Layout”.
Step 2: enable persistence
Click “Applications”, then “Configure persistent volume”, set passphrase, click “Create”, make sure “Personal Data” is enabled, click “Save” and finally “Restart Now”.
Step 3: boot to Tails, unlock persistent storage and set admin password (required to mount VeraCrypt volumes)
Heads-up: if keyboard layout of computer isn’t “English (US)”, set “Keyboard Layout”.
Click “+” under ”Additional Settings”, then “Administration Password”, set password, click “Add” and finally “Start Tails”.
Step 4: plug in network cable or connect to Wi-Fi network and wait for Tor to be ready.
Tor is ready
👍
Step 5: download latest release of VeraCrypt
Click “Applications”, then “Tor Browser”, go to https://www.veracrypt.fr/en/Downloads.html and download latest release of “Linux Generic Installer” and associated PGP signature.
Step 6: set VeraCrypt release semver environment variable
Heads-up: replace
1.24-Update7with latest release semver.
TAILS_RELEASE_SEMVER=1.24-Update7
Step 7: import “VeraCrypt Team (2018 - Supersedes Key ID=0x54DDD393)” PGP public key
$ torsocks curl https://www.idrix.fr/VeraCrypt/VeraCrypt_PGP_public_key.asc | gpg --import
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 5434 100 5434 0 0 3002 0 0:00:01 0:00:01 --:--:-- 3000
gpg: key 0x821ACD02680D16DE: 1 signature not checked due to a missing key
gpg: key 0x821ACD02680D16DE: public key "VeraCrypt Team (2018 - Supersedes Key ID=0x54DDD393) <veracrypt@idrix.fr>" imported
gpg: Total number processed: 1
gpg: imported: 1
gpg: no ultimately trusted keys found
imported: 1
👍
Step 8: verify Tails release (learn how here)
$ gpg --verify ~/Tor\ Browser/veracrypt-$TAILS_RELEASE_SEMVER-setup.tar.bz2.sig
gpg: assuming signed data in '/home/amnesia/Tor Browser/veracrypt-1.24-Update7-setup.tar.bz2'
gpg: Signature made Sat 08 Aug 2020 06:22:10 PM UTC
gpg: using RSA key 5069A233D55A0EEB174A5FC3821ACD02680D16DE
gpg: Good signature from "VeraCrypt Team (2018 - Supersedes Key ID=0x54DDD393) <veracrypt@idrix.fr>" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 5069 A233 D55A 0EEB 174A 5FC3 821A CD02 680D 16DE
Good signature
👍
Step 9: extract Tails release
cd ~/Tor\ Browser
tar --extract --file ~/Tor\ Browser/veracrypt-$TAILS_RELEASE_SEMVER-setup.tar.bz2 veracrypt-$TAILS_RELEASE_SEMVER-setup-gui-x64
Step 10: run installer, click “Extract .tar Package File”, accept license terms, click “OK” and finally “OK”.
./veracrypt-$TAILS_RELEASE_SEMVER-setup-gui-x64
Step 11: extract veracrypt binary to ~/Persistent
cd ~/Persistent
tar --extract --file /tmp/veracrypt_${TAILS_RELEASE_SEMVER}_amd64.tar.gz --strip-components 2 usr/bin/veracrypt
Step 12: create veracrypt.AppImage
echo -n "./veracrypt" > veracrypt.AppImage
chmod +x veracrypt.AppImage
👍
Usage guide
To use VeraCrypt, double-click veracrypt.AppImage.
👍