No user name/password required when exploring from live USB? [duplicate]

security permissions live-usb

A few months back when I buggered up my netbook and then booted into it to get information from it using a live USB. (Thinking that was 10.10)

When I was copy/pasting this to another USB at no time was I required to enter my user name or password to access this information. Why and how was that possible? Shouldn't that not be possible? This was information from the 'home' including documents, pictures, music, videos and some other locations.

This does not sound secure at all, is there any way that I can ensure this cannot happen again and that user name and password would be required to access information on my installed Ubuntu computer when booting on that computer from a live USB/CD/DVD?


Solution 1:

No user name/password required when exploring from live USB

Why and how was that possible? Shouldn't that not be possible?

Well, you are using the OS (Ubuntu) from the live USB not OS from your installation

This does not sound secure at all, is there any way that I can ensure this cannot happen again and that user name and password would be required to access information on my installed Ubuntu computer when booting on that computer from a live USB

You could encrypt you data:

https://help.ubuntu.com/community/EncryptedFilesystems

https://wiki.archlinux.org/index.php/System_Encryption_with_LUKS

Why Use Encryption?

In the simplest terms encryption is a method for establishing privacy.

Solution 2:

This is possible because your files are on the hard disk, so anyone with full control over whatever operating system is running on the computer has full control (including full access) to your files. This is the case when running Ubuntu or another OS from a live system (live CD/DVD or live USB), and this is also the case if someone were to take the hard drive out of your computer and put it in their computer.

You can get a reasonable degree of protection from this by encrypting your home folder, making sure to only store your files in your home folder (of course back them up somewhere else besides this computer, though...and make sure the backup is secure), and using a very strong password. The password is stored, encrypted, on the hard disk, so if it's weak, the encryption can be cracked pretty easily. See this comic for a relatively accessible explanation of some of the issues relevant to password choice.

Encrypting your home folder is an option during installation, but you can also enable it on an already-installed system by following the instructions in this guide. It is recommended to encrypt your swap partition too, which that guide also explains.

The reason most users do not encrypt their home folders (besides not knowing that it is an option or not being extremely concerned about the privacy of their data) is that, often, the person trying to access your files without your password is you. This also complicates (but does not usually prevent) recovering data from the disk, even if it is mostly intact and you remember the password.

If you want to increase your protection, make sure the password you use for your Ubuntu system is not the same as or even similar to the password you use for anything else, such as any websites.

Related

Bookmarks in nautilus only in menu, not in the shortcut tab
How to batch rename files with "variables"? [duplicate]
Identifying and Downloading Dependency for an Offline PC [duplicate]
Symbolic links error while creating Ubuntu UEFI bootable USB
Removing an Ubuntu installation
How to install VirtualBox? [duplicate]
How do I get my BCM43228 card working in mainline kernel 3.4 or higher?
How can I recover data from a 2TB hard drive?
How would I connect to a proxy on Ubuntu Studio? [duplicate]
How to reinstall messed-up 14.04 without losing personal data
*Error* for Sudo apt-get update on ubuntu 20.04
What software does the Ubuntu installer run on?