The Sanctuary
Technology => Network (in)Security => Topic started by: SBTlauien on November 01, 2014, 09:15:28 pm
-
How can I/Is it possible, to set up a hard drive with an OS(either Windows 7 or Ubuntu) on it, that is fully encrypted without any backdoors? I have read that BitLocker has a backdoor for the NSA, so BitLocker is worthless.
I have the time to read up on the subject and would be willing to learn exactly how to do this. Any links would be appreciated.
-
I've decided to go with Truecrypt 7.1a
That should do the trick.
-
you keep asking about backdoors like someone will be able to authoritively tell you whether they exist in a package
-
https://wiki.archlinux.org/index.php/Dm-crypt
-
you keep asking about backdoors like someone will be able to authoritively tell you whether they exist in a package
I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.
-
I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.
Well, to be fair, if it's open source, one with the right expertise should be able to spot any backdoors written.
But of course, it needs to be open source.
-
I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.
Well, to be fair, if it's open source, one with the right expertise should be able to spot any backdoors written.
But of course, it needs to be open source.
Should is the keyword, but yes it is at least a lot more trustworthy than anything proprietary.
SBT this was talked about extensively in your thread on smashing drives. Use dm-crypt with a self destruct (erase headers) script on the ready. While secure isn't truecrypt being phased out?
-
From what I have read, TrueCrypt 7.1a is still good and the TrueCrypt developers shutdown/disappeared in May of this year, so it's not very outdated(although it will be).
I'll be looking into DM-Crypt...
-
How can I/Is it possible, to set up a hard drive with an OS(either Windows 7 or Ubuntu) on it, that is fully encrypted without any backdoors? I have read that BitLocker has a backdoor for the NSA, so BitLocker is worthless.
I have the time to read up on the subject and would be willing to learn exactly how to do this. Any links would be appreciated.
Yes. The best way to insure your sensitive information will not be accessed via a backdoor in a program is to disable all internet/bluetooth/wireless capability. If you need a burn computer or have sensitive information that could make you a target the only way to keep yourself safe is to have a burnbook. You never connect your burnbook to the web. You keep it hidden unless you are using it. You dont keep it at your house. And be ready to fry that fucker at a moments notice. Honsetly that is the only way to be absolutely sure that your data is inaccessible to prying eyes.
-
From what I have read, TrueCrypt 7.1a is still good and the TrueCrypt developers shutdown/disappeared in May of this year, so it's not very outdated(although it will be).
I'll be looking into DM-Crypt...
yeah, I'm of the opinion whoever's behind truecrypt abandoned ship because they were sick of the accusations and didn't want to be tracked down, not because they backdoored or colluded with authorities. the official audit hasn't turned up anything yet, but considering the projects finished and likely to be superseded by a whole bunch of different forks, it's probably a better idea to stick with a more established package until it stabilises, at least.
Yes. The best way to insure your sensitive information will not be accessed via a backdoor in a program is to disable all internet/bluetooth/wireless capability. If you need a burn computer or have sensitive information that could make you a target the only way to keep yourself safe is to have a burnbook. You never connect your burnbook to the web. You keep it hidden unless you are using it. You dont keep it at your house. And be ready to fry that fucker at a moments notice. Honsetly that is the only way to be absolutely sure that your data is inaccessible to prying eyes.
unfortunately most people need to have network access to use that data for whatever reason, and it can't just be hidden away.
-
https://tails.boum.org/
-
https://tails.boum.org/
This addresses a different issue. The tails principle is to never save any data and to route all connections through tor. You are still faced with the problem encrypting data that you want to store offline.
-
I went with TOR 7.1A
I have read very good things about it. But I have read that it stores certain data in the bootloader, which makes me wonder...