Install Kicksecure inside chroot
Donate
UNFINISHED!
Template:Kicksecure disclaimer
You can convert your existing Debian buster installation into Kicksecure by installing the Kicksecure deb package. This is also called distro-morphing
.
There is no downloadable iso yet but there will be one in the future. For now, install Debian on your host or inside a VM. Then install Kicksecure on top.
Prerequisites
Copy or share this direct link!
https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Prerequisites
Click below ↴ = Copy to Clipboard
[[Chroot#Prerequisites|Prerequisites]]
Copy as Wikitext
[Prerequisites](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Prerequisites)
for Discourse, reddit, GitHub
[Prerequisites](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Prerequisites)
Copy as Markdown
[url=https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Prerequisites]Prerequisites[/url]
Copy as phpBB
We don't use embedded scripts
This share button is completely self-hosted by this webserver. No scripts from any of the social networks are embedded on this webserver. See also
Social Share Button.
Install package(s) mmdebstrap following these instructions
1 Platform specific notice.
- Kicksecure: No special notice.
- Kicksecure-Qubes: In Template.
2 Update the package lists and upgrade the system
.
Click = Copy Copied to clipboard!
3 Install the mmdebstrap package(s).
Using apt command line --no-install-recommends option is in most cases optional.
Click = Copy Copied to clipboard!
4 Platform specific notice.
- Kicksecure: No special notice.
- Kicksecure-Qubes: Shut down Template and restart App Qubes based on it as per Qubes Template Modification.
5 Done.
The procedure of installing package(s) mmdebstrap is complete.
Installation
Copy or share this direct link!
https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Installation
Click below ↴ = Copy to Clipboard
[[Chroot#Installation|Installation]]
Copy as Wikitext
[Installation](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Installation)
for Discourse, reddit, GitHub
[Installation](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Installation)
Copy as Markdown
[url=https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722#Installation]Installation[/url]
Copy as phpBB
We don't use embedded scripts
This share button is completely self-hosted by this webserver. No scripts from any of the social networks are embedded on this webserver. See also
Social Share Button.
It is required to add the signing key on the host because mmdebstrap will need it.
(Users of Whonix and Kicksecure could skip this step since the signing key is there by default.)
Key could be removed at the end. (Except Whonix and Kicksecure should not do this unless they upgrade from source code.)
Complete the following steps to add the Kicksecure Signing Key to the system's APT keyring.
Open a terminal.
1. Package curl needs to be installed.
Install package(s) curl following these instructions
1 Platform specific notice.
- Kicksecure: No special notice.
- Kicksecure-Qubes: In Template.
2 Update the package lists and upgrade the system.
Click = Copy Copied to clipboard!
3 Install the curl package(s).
Using apt command line --no-install-recommends option is in most cases optional.
Click = Copy Copied to clipboard!
4 Platform specific notice.
- Kicksecure: No special notice.
- Kicksecure-Qubes: Shut down Template and restart App Qubes based on it as per Qubes Template Modification.
5 Done.
The procedure of installing package(s) curl is complete.
2. Download Kicksecure Signing Key. [1]
Choose your operating system.
A : Debian
B : Qubes
A : Debian
If you are using Debian, run.
Choose TLS or onion.
TLS (Debian)
onion (Debian)
B : Qubes
If you are using a Qubes Debian Template, run.
Choose TLS or onion.3. Users can check Kicksecure Signing Key for better security.
4. Done.
The procedure of adding the Kicksecure signing key is now complete.
A secure by default operating system with the latest security research in place.
Copy or share this direct link!
https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722
Click below ↴ = Copy to Clipboard
[[Chroot|Install Kicksecure inside a folder (chroot)]]
Copy as Wikitext [Install Kicksecure inside a folder (chroot)](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722)
for Discourse, reddit, GitHub [Install Kicksecure inside a folder (chroot)](https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722)
Copy as Markdown [url=https://www.kicksecure.com/wiki/Chroot?direction=next&oldid=48722]Install Kicksecure inside a folder (chroot)[/url]
Copy as phpBB
We don't use embedded scripts
This share button is completely self-hosted by this webserver. No scripts from any of the social networks are embedded on this webserver. See also
Social Share Button.
At
Kicksecure we value freedom and trust, supporting Open Source and Freedom Software
2012-
2025 ENCRYPTED SUPPORT LLC
We believe security software like Kicksecure needs to remain Open Source and independent. Would you help sustain and grow the project? Learn more about our 12 year success story and maybe DONATE!
- ↑
See Secure Downloads to understand why
curland the parameters--tlsv1.3are used instead ofwget.
Placing an additional signing key into folder/usr/share/keyringsby itself alone has no impact on security as this folder is not automatically used by Debian's APT by default. Only when an APT sources list configuration file points to folder/usr/share/keyringsusing thesigned-bykeyword the signing key will be actually used. Therefore deleting keys in/usr/share/keyringsis optional if intending to disable an APT repository. See also APT Signing Key Folders.