scientificlinuxforum.org QR code
Scientific Linux Forum.org



  Reply to this topicStart new topicStart Poll

> Truecrypt
Jcink
 Posted: May 2 2011, 05:40 PM
Quote Post


SLF IRC Team
****

Group: Members
Posts: 254
Member No.: 15
Joined: 10-April 11









This is probably my favorite encryption app. I know the kernel has encryption built in, but this tool is easy to use, and it's completely open source with a GUI.

http://www.truecrypt.org/

Now you can create AES 256 containers; great for securing things you don't want anyone else to see. Also makes for neat little portable filesystem containers for USB drives.
PMUsers Website
^
leigh123linux
 Posted: May 2 2011, 05:54 PM
Quote Post


SLF Junior
**

Group: Members
Posts: 47
Member No.: 48
Joined: 14-April 11









Would a Truecrypt/Realcrypt rpm be useful for EL6?, I ported it for rpmfusion.


http://rpmfusion.org/Package/realcrypt


Why the name realcrypt?

answer = it was the only way Truecrypt would allow us to distribute it without fear or being sued http://dl.dropbox.com/u/2835777/BangHead1.gif
PM
^
joutlan
 Posted: May 3 2011, 03:29 AM
Quote Post


SLF Founder
********

Group: Admins
Posts: 1180
Member No.: 1
Joined: 8-April 11









QUOTE (leigh123linux @ May 2 2011, 01:54 PM)
Would a Truecrypt/Realcrypt rpm be useful for EL6?, I ported it for rpmfusion.


http://rpmfusion.org/Package/realcrypt


Why the name realcrypt?

answer = it was the only way Truecrypt would allow us to distribute it without fear or being sued  http://dl.dropbox.com/u/2835777/BangHead1.gif


What's going on with rpmfusion for EL6?


--------------------
DΞLL Precision M6700: 17 inch NB//i7-quad w/USB 3.0, 16.0GB, Quadro K5000M 2.0GB DDR3, RGBLED //W8P64/Scientific Linux 6.4 x64
DΞLL Vostro 3350 Nirvana: 13 inch NB w/ IntelSSD// W8Px64 (Work;Games)
Nexus 4 //Android
PMEmail PosterUsers WebsiteIntegrity Messenger IM
^
spoovy
 Posted: May 5 2011, 03:50 PM
Quote Post


SLF Moderator
****

Group: Moderators
Posts: 281
Member No.: 5
Joined: 8-April 11









I use a TrueCrypt volume in dropbox; keeps stuff encrypted at every stage of the journey from machine to machine and works cross platform.

Warning though - you need to turn off kernel level encryption in TC settings to get it to sync properly.


--------------------
PMIntegrity Messenger IM
^
joutlan
 Posted: May 5 2011, 04:43 PM
Quote Post


SLF Founder
********

Group: Admins
Posts: 1180
Member No.: 1
Joined: 8-April 11









QUOTE (spoovy @ May 5 2011, 11:50 AM)
I use a TrueCrypt volume in dropbox; keeps stuff encrypted at every stage of the journey from machine to machine and works cross platform.   

Warning though - you need to turn off kernel level encryption in TC settings to get it to sync properly.


Could you expound on this a little? I'm a dropbox user also.


--------------------
DΞLL Precision M6700: 17 inch NB//i7-quad w/USB 3.0, 16.0GB, Quadro K5000M 2.0GB DDR3, RGBLED //W8P64/Scientific Linux 6.4 x64
DΞLL Vostro 3350 Nirvana: 13 inch NB w/ IntelSSD// W8Px64 (Work;Games)
Nexus 4 //Android
PMEmail PosterUsers WebsiteIntegrity Messenger IM
^
wearetheborg
 Posted: May 5 2011, 05:16 PM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 355
Member No.: 18
Joined: 11-April 11









QUOTE (joutlan @ May 5 2011, 11:43 AM)
QUOTE (spoovy @ May 5 2011, 11:50 AM)
I use a TrueCrypt volume in dropbox; keeps stuff encrypted at every stage of the journey from machine to machine and works cross platform.   

Warning though - you need to turn off kernel level encryption in TC settings to get it to sync properly.


Could you expound on this a little? I'm a dropbox user also.


Yeah, I'm interested too. I use spideroak.

I was interested in incremental remote backup.
I first want to encyrpt my data locally that I want to backup. Since I will be making changes locally to the data, I want some sort of incremental imaging system where the incremental changes are stored in seperate files so that I only have to upload the incremental encrypted changes.



--------------------
PM
^
spoovy
 Posted: May 5 2011, 06:14 PM
Quote Post


SLF Moderator
****

Group: Moderators
Posts: 281
Member No.: 5
Joined: 8-April 11









Install TrueCrypt and create a volume in your dropbox folder. It will upload the new volume to db servers. Mount the volume and use it as normal - anything in there will be encrypted on your disk, then SSL encrypted by db in transit, then encrypted again for storage on their servers. The beauty of it is that because db uses an rsync -type algorithm and TC uses block level encryption, each time you make a small change to the contents of the volume, it will only upload the changes to the volume - not the whole volume.

In TrueCrypt options dialogue you must tick "do not use kernel cryptographic services". Optionally, untick "Preserve modification timestamp of file containers", and it will also then sync as soon as you make a change to any file in the volume. If you leave this ticked it will only sync when you unmount the volume. I can't actually get this last bit to work on Windows clients, so I have to unmount them and allow time to upload any changes to db before shutting down, but on SL it syncs about 30 secs after saving the changed file.


I got most of this from the discussion here - http://is.gd/Q1Nv8N

It also gave me the idea of using KeePassX in the TC volume.

This post has been edited by spoovy: May 5 2011, 07:19 PM


--------------------
PMIntegrity Messenger IM
^
joutlan
 Posted: May 5 2011, 06:43 PM
Quote Post


SLF Founder
********

Group: Admins
Posts: 1180
Member No.: 1
Joined: 8-April 11









Great...thanks Spoovy...I've got TrueCrypt installed and already a paid Dropbox user. Let's see what I can do with this smile.gif

'borg: I though SpiderOak wasn't linux compat? There's also Wuala that seems to be on the rise.


--------------------
DΞLL Precision M6700: 17 inch NB//i7-quad w/USB 3.0, 16.0GB, Quadro K5000M 2.0GB DDR3, RGBLED //W8P64/Scientific Linux 6.4 x64
DΞLL Vostro 3350 Nirvana: 13 inch NB w/ IntelSSD// W8Px64 (Work;Games)
Nexus 4 //Android
PMEmail PosterUsers WebsiteIntegrity Messenger IM
^
fnj666
 Posted: Jun 12 2011, 06:15 AM
Quote Post


SLF Rookie
*

Group: Members
Posts: 18
Member No.: 156
Joined: 11-May 11









QUOTE (joutlan @ May 2 2011, 10:29 PM)
QUOTE (leigh123linux @ May 2 2011, 01:54 PM)
Would a Truecrypt/Realcrypt rpm be useful for EL6?, I ported it for rpmfusion.

http://rpmfusion.org/Package/realcrypt


What's going on with rpmfusion for EL6?


I also would like to know. Is it moribund? It appears to be almost completely dead. For example go to RPM Fusion and click the browse links. Most of the browse links for EL6 there are completely void of content, and the few that lead to anything just have minuscule content. There isn't that much content for EL5 either.
PM
^
joutlan
 Posted: Jun 12 2011, 06:21 AM
Quote Post


SLF Founder
********

Group: Admins
Posts: 1180
Member No.: 1
Joined: 8-April 11









QUOTE (fnj666 @ Jun 12 2011, 02:15 AM)
QUOTE (joutlan @ May 2 2011, 10:29 PM)
QUOTE (leigh123linux @ May 2 2011, 01:54 PM)
Would a Truecrypt/Realcrypt rpm be useful for EL6?, I ported it for rpmfusion.

http://rpmfusion.org/Package/realcrypt


What's going on with rpmfusion for EL6?


I also would like to know. Is it moribund? It appears to be almost completely dead. For example go to RPM Fusion and click the browse links. Most of the browse links for EL6 there are completely void of content, and the few that lead to anything just have minuscule content. There isn't that much content for EL5 either.


That's disheartening for me, but we seem to doing OK without it....maybe it's time for new management? smile.gif


--------------------
DΞLL Precision M6700: 17 inch NB//i7-quad w/USB 3.0, 16.0GB, Quadro K5000M 2.0GB DDR3, RGBLED //W8P64/Scientific Linux 6.4 x64
DΞLL Vostro 3350 Nirvana: 13 inch NB w/ IntelSSD// W8Px64 (Work;Games)
Nexus 4 //Android
PMEmail PosterUsers WebsiteIntegrity Messenger IM
^
latomicien
 Posted: Dec 12 2011, 08:32 PM
Quote Post


SLF Newbie


Group: Members
Posts: 10
Member No.: 849
Joined: 18-September 11









Hello,

is it possible to crypt all the Hard Disk (not only a container) ?

thanks you very much for your help.
PM
^
Jcink
 Posted: Dec 13 2011, 12:18 AM
Quote Post


SLF IRC Team
****

Group: Members
Posts: 254
Member No.: 15
Joined: 10-April 11









No, unfortunately TrueCrypt only supports that on Windows.
PMUsers Website
^
latomicien
 Posted: Dec 14 2011, 09:49 PM
Quote Post


SLF Newbie


Group: Members
Posts: 10
Member No.: 849
Joined: 18-September 11









Hello,

thanks you for your attention.

So, please, do you know other free AES 256 codes which can crypt all the Hard Disk Drive on this linux ?

bye
PM
^
wearetheborg
 Posted: Jan 16 2012, 02:51 AM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 355
Member No.: 18
Joined: 11-April 11









QUOTE (spoovy @ May 5 2011, 01:14 PM)

In TrueCrypt options dialogue you must tick "do not use kernel cryptographic services".


What happens if this is not ticked?

PS: Mucho thanks Spoovy!
I was looking for exactly this solution.

To make truecrypt mount a file volume, do I need the root password?


--------------------
PM
^
wearetheborg
 Posted: Jan 16 2012, 02:57 AM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 355
Member No.: 18
Joined: 11-April 11









QUOTE (joutlan @ May 5 2011, 01:43 PM)

'borg:  I though SpiderOak wasn't linux compat?


Nope, spideroak is linux compatible

PS: Have a look at
http://forums.debian.net/viewtopic.php?f=10&t=54235

For how to install SpiderOak without giving it root privilege.




--------------------
PM
^
wearetheborg
 Posted: Jan 16 2012, 03:01 AM
Quote Post


SLF Advocate
*****

Group: Members
Posts: 355
Member No.: 18
Joined: 11-April 11









There was this on the link Spoovy posted

QUOTE

WARNING:

In the scenario described in this thread, there is no way to mount the TC volume on Dropbox from two different computers at the same time (assuming you mount read/write) – the differential block writes that TC sends from each computer will corrupt the other computer’s view of the file system in the TC volume since each instance of TC expects to be the sole writer to the volume.

Bottom line: unmount your TC volume on one computer and make sure all changes have sync’d before mounting it on another computer.


Also, for my sensitive information I would do the following:
Mount the truecrypt volume when dropbox/spideroak is NOT running
(I dont want to risk dropbox/spideroak getting hold of the trurcrypt password).


Actually, I give passwords to truecrypt when firefox etc have not been started, to avoid any browser based password sniffing attacks.


--------------------
PM
^
0 User(s) are reading this topic (0 Guests and 0 Anonymous Users)
0 Members:

Topic Options Reply to this topicStart new topicStart Poll