mattlach
Patron
- Joined
- Oct 14, 2012
- Messages
- 280
Hey all, First off, this is less of a request for help, and more of a discussion because I am curious, but this seemed to be the best place for it.
I had a rather odd thing happen to me today.
I've been in crunch mode at work, and thus been doing a lot of work from home. I have some applications on my work issued laptop necessary for what I am doing, so it becomes kind of a nuisance, with a lot of work on my home workjstation that has plenty of desktop real estate, and the teeny little laptop on the side.
In a moment of frustration (and in part procrastination) I had a lightbulb moment.
Why don't I image the laptop drive, copy it to my workstation, convert it to a .vdi virtualbox image, and run it from the same machine! It would be so much more efficient, and I would get done so much faster!
The laptop has some sort of full disk encryption by McAfee which pops up a username and password dialog before the windows boot loader starts loading windows 7. I figured this wouldn't be a problem, as it would just allow me to enter the username and password when loading my VM, and it wouldn't be a security concern for IT either, because hey, the image would be just as encrypted as the hardware disk, right?
Attempt 1: (not on FreeNAS)
I grab my handy little Ubuntu bootable USB, boot up my work laptop in Ubuntu, and from there DD an image of the encrypted disk in it's entirety to a USB hard drive dock I have connected to it.
I then reconnect the hard drive dock to my workstation, and proceed to copy the image to my small two disk ZFS on Linux mirror on my workstation. Once copied, I use the vbox manage convertdd application to convert it to a virtualbox compatible .vdi.
This is when all hell breaks loose. About 26GB into the convert process my previously perfect small mirror all of a sudden has a metric ton of read errors, perfectly matched in quantity on both drives in the mirrored set. zpool status recommends I delete the image file and restore from a backup. I dutifully delete the raw dd image and then do a scrub of the disks. No problems detected, 0 repairs. I've since copied multiple gigabytes to and from the mirror with no issues at all.
Odd, I think. A little bit concerned that my setup is starting to act up, I chuck it up to some weird random read or write failure somewhere in the chain, make a mental note to keep an eye on the health of my little local mirror and decide to start over.
Attempt 2: (on FreeNAS)
I reboot the laptop up using my trusty ubuntu USB stick, and this time mount a share on my FreeNAS server (12 disks 2 RAIDz2 vdevs in one pool). Again, I proceed to DD the full encrypted disk, but this time to my FreeNAS server.
First attempt fails after 20 some GB due to some sort of timeout. Weird I think. I reboot the laptop, and try again.
This time the image completes. I go to the share on my workstation, and again, initialize the vdi conversion process. The image in total is about 167GB, but the conversion process stops without error resulting in a 75GB file. I see this and am surprised, but take it as a positive sign. Some sort of magic in the conversion process due to sparse .vdi files, I think, instead of fully populated raw images.
Ready to test how everything will load in virtualbox, I set up my machine, add the converted vdi, and nothing. Not even a boot error. I get a black blank screen in my virtualbox console, that is not responding. A little disappointed, I assume that it is some sort of protective measure to prevent booting in case the wrong people get a hold of the laptop and try to steal data from it.
Disappointed I go to continue my annoying work from home task, switching back and forth between laptop and workstation, when I notice none of my network drives to FreeNAS are responding. Not only that, the FreeNAS server is not responding at all. Not to the web interface,m and not to pings...
My FreeNAS install runs in a virtual environment (yeah, I know, not recommended, but it works due to forwarded HBA's, so I have direct read and write access to the drives) so I sign on to my ESXi server to investigate. I expect to find the FreeNAS guest running, but somehow having network issues, but instead I find it completely off. All the other guests are running, but FreeNAS is powered off.
I go to the logs, there are some cryptic unintelligible messages about a crash (and an offer for paid support from VMWare :p )
To be on the safe side I reboot the entire host, and bring all the guests back up again.
So, what do you guys think? Does McAfee Endpoint Encryption do something crazy to try to foil data thiefs, or is this the biggest coincidence of odd failures when tying to do the same thing on different systems?
Other than this one raw image file from from my work laptop, both my Workstation and my server have been rock stable since they were both built, 4 years and 1 year ago, respectively.
Thoughts?
I had a rather odd thing happen to me today.
I've been in crunch mode at work, and thus been doing a lot of work from home. I have some applications on my work issued laptop necessary for what I am doing, so it becomes kind of a nuisance, with a lot of work on my home workjstation that has plenty of desktop real estate, and the teeny little laptop on the side.
In a moment of frustration (and in part procrastination) I had a lightbulb moment.
Why don't I image the laptop drive, copy it to my workstation, convert it to a .vdi virtualbox image, and run it from the same machine! It would be so much more efficient, and I would get done so much faster!
The laptop has some sort of full disk encryption by McAfee which pops up a username and password dialog before the windows boot loader starts loading windows 7. I figured this wouldn't be a problem, as it would just allow me to enter the username and password when loading my VM, and it wouldn't be a security concern for IT either, because hey, the image would be just as encrypted as the hardware disk, right?
Attempt 1: (not on FreeNAS)
I grab my handy little Ubuntu bootable USB, boot up my work laptop in Ubuntu, and from there DD an image of the encrypted disk in it's entirety to a USB hard drive dock I have connected to it.
I then reconnect the hard drive dock to my workstation, and proceed to copy the image to my small two disk ZFS on Linux mirror on my workstation. Once copied, I use the vbox manage convertdd application to convert it to a virtualbox compatible .vdi.
This is when all hell breaks loose. About 26GB into the convert process my previously perfect small mirror all of a sudden has a metric ton of read errors, perfectly matched in quantity on both drives in the mirrored set. zpool status recommends I delete the image file and restore from a backup. I dutifully delete the raw dd image and then do a scrub of the disks. No problems detected, 0 repairs. I've since copied multiple gigabytes to and from the mirror with no issues at all.
Odd, I think. A little bit concerned that my setup is starting to act up, I chuck it up to some weird random read or write failure somewhere in the chain, make a mental note to keep an eye on the health of my little local mirror and decide to start over.
Attempt 2: (on FreeNAS)
I reboot the laptop up using my trusty ubuntu USB stick, and this time mount a share on my FreeNAS server (12 disks 2 RAIDz2 vdevs in one pool). Again, I proceed to DD the full encrypted disk, but this time to my FreeNAS server.
First attempt fails after 20 some GB due to some sort of timeout. Weird I think. I reboot the laptop, and try again.
This time the image completes. I go to the share on my workstation, and again, initialize the vdi conversion process. The image in total is about 167GB, but the conversion process stops without error resulting in a 75GB file. I see this and am surprised, but take it as a positive sign. Some sort of magic in the conversion process due to sparse .vdi files, I think, instead of fully populated raw images.
Ready to test how everything will load in virtualbox, I set up my machine, add the converted vdi, and nothing. Not even a boot error. I get a black blank screen in my virtualbox console, that is not responding. A little disappointed, I assume that it is some sort of protective measure to prevent booting in case the wrong people get a hold of the laptop and try to steal data from it.
Disappointed I go to continue my annoying work from home task, switching back and forth between laptop and workstation, when I notice none of my network drives to FreeNAS are responding. Not only that, the FreeNAS server is not responding at all. Not to the web interface,m and not to pings...
My FreeNAS install runs in a virtual environment (yeah, I know, not recommended, but it works due to forwarded HBA's, so I have direct read and write access to the drives) so I sign on to my ESXi server to investigate. I expect to find the FreeNAS guest running, but somehow having network issues, but instead I find it completely off. All the other guests are running, but FreeNAS is powered off.
I go to the logs, there are some cryptic unintelligible messages about a crash (and an offer for paid support from VMWare :p )
To be on the safe side I reboot the entire host, and bring all the guests back up again.
So, what do you guys think? Does McAfee Endpoint Encryption do something crazy to try to foil data thiefs, or is this the biggest coincidence of odd failures when tying to do the same thing on different systems?
Other than this one raw image file from from my work laptop, both my Workstation and my server have been rock stable since they were both built, 4 years and 1 year ago, respectively.
Thoughts?
Last edited:
