Author Topic: Fully encrypted OS with no backdoor (Read 1395 times)

SBTlauien · « **on:** November 01, 2014, 09:15:28 pm »

How can I/Is it possible, to set up a hard drive with an OS(either Windows 7 or Ubuntu) on it, that is fully encrypted without any backdoors? I have read that BitLocker has a backdoor for the NSA, so BitLocker is worthless.

I have the time to read up on the subject and would be willing to learn exactly how to do this. Any links would be appreciated.

SBTlauien · « **Reply #1 on:** November 05, 2014, 04:13:45 am »

I've decided to go with Truecrypt 7.1a

That should do the trick.

aldra · « **Reply #2 on:** November 05, 2014, 04:24:12 am »

you keep asking about backdoors like someone will be able to authoritively tell you whether they exist in a package

stdio.h · « **Reply #3 on:** November 05, 2014, 04:24:18 am »

https://wiki.archlinux.org/index.php/Dm-crypt

Riv3r · « **Reply #4 on:** November 05, 2014, 07:41:36 pm »

Quote from: aldra on November 05, 2014, 04:24:12 am

you keep asking about backdoors like someone will be able to authoritively tell you whether they exist in a package

I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.

Arnox · « **Reply #5 on:** November 05, 2014, 07:48:56 pm »

Quote from: Riv3r on November 05, 2014, 07:41:36 pm

I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.

Well, to be fair, if it's open source, one with the right expertise should be able to spot any backdoors written.

But of course, it needs to be open source.

RustyShackleford · « **Reply #6 on:** November 05, 2014, 09:42:04 pm »

Quote from: Arnox on November 05, 2014, 07:48:56 pm

Quote from: Riv3r on November 05, 2014, 07:41:36 pm
I laughed but this. You aren't going to get a definitive answer. That is the risk you run when using someone else's tools.

Well, to be fair, if it's open source, one with the right expertise should be able to spot any backdoors written.

But of course, it needs to be open source.

Should is the keyword, but yes it is at least a lot more trustworthy than anything proprietary.

SBT this was talked about extensively in your thread on smashing drives. Use dm-crypt with a self destruct (erase headers) script on the ready. While secure isn't truecrypt being phased out?

SBTlauien · « **Reply #7 on:** November 05, 2014, 09:49:36 pm »

From what I have read, TrueCrypt 7.1a is still good and the TrueCrypt developers shutdown/disappeared in May of this year, so it's not very outdated(although it will be).

I'll be looking into DM-Crypt...

Σ · « **Reply #8 on:** November 11, 2014, 05:51:29 pm »

Quote from: SBTlauien on November 01, 2014, 09:15:28 pm

How can I/Is it possible, to set up a hard drive with an OS(either Windows 7 or Ubuntu) on it, that is fully encrypted without any backdoors? I have read that BitLocker has a backdoor for the NSA, so BitLocker is worthless.

I have the time to read up on the subject and would be willing to learn exactly how to do this. Any links would be appreciated.

Yes. The best way to insure your sensitive information will not be accessed via a backdoor in a program is to disable all internet/bluetooth/wireless capability. If you need a burn computer or have sensitive information that could make you a target the only way to keep yourself safe is to have a burnbook. You never connect your burnbook to the web. You keep it hidden unless you are using it. You dont keep it at your house. And be ready to fry that fucker at a moments notice. Honsetly that is the only way to be absolutely sure that your data is inaccessible to prying eyes.

aldra · « **Reply #9 on:** November 14, 2014, 12:18:10 am »

Quote from: SBTlauien on November 05, 2014, 09:49:36 pm

From what I have read, TrueCrypt 7.1a is still good and the TrueCrypt developers shutdown/disappeared in May of this year, so it's not very outdated(although it will be).

I'll be looking into DM-Crypt...

yeah, I'm of the opinion whoever's behind truecrypt abandoned ship because they were sick of the accusations and didn't want to be tracked down, not because they backdoored or colluded with authorities. the official audit hasn't turned up anything yet, but considering the projects finished and likely to be superseded by a whole bunch of different forks, it's probably a better idea to stick with a more established package until it stabilises, at least.

Quote from: Σ on November 11, 2014, 05:51:29 pm

Yes. The best way to insure your sensitive information will not be accessed via a backdoor in a program is to disable all internet/bluetooth/wireless capability. If you need a burn computer or have sensitive information that could make you a target the only way to keep yourself safe is to have a burnbook. You never connect your burnbook to the web. You keep it hidden unless you are using it. You dont keep it at your house. And be ready to fry that fucker at a moments notice. Honsetly that is the only way to be absolutely sure that your data is inaccessible to prying eyes.

unfortunately most people need to have network access to use that data for whatever reason, and it can't just be hidden away.

WhiteCollarCriminal · « **Reply #10 on:** November 16, 2014, 03:07:49 am »

https://tails.boum.org/

RustyShackleford · « **Reply #11 on:** November 16, 2014, 03:45:46 pm »

Quote from: WhiteCollarCriminal on November 16, 2014, 03:07:49 am

https://tails.boum.org/

This addresses a different issue. The tails principle is to never save any data and to route all connections through tor. You are still faced with the problem encrypting data that you want to store offline.

SBTlauien · « **Reply #12 on:** November 20, 2014, 01:15:30 am »

I went with TOR 7.1A

I have read very good things about it. But I have read that it stores certain data in the bootloader, which makes me wonder...

News:

Author Topic: Fully encrypted OS with no backdoor (Read 1395 times)

SBTlauien

Fully encrypted OS with no backdoor

SBTlauien

Re: Fully encrypted OS with no backdoor

aldra

Re: Fully encrypted OS with no backdoor

stdio.h

Re: Fully encrypted OS with no backdoor

Riv3r

Re: Fully encrypted OS with no backdoor

Arnox

Re: Fully encrypted OS with no backdoor

RustyShackleford

Re: Fully encrypted OS with no backdoor

SBTlauien

Re: Fully encrypted OS with no backdoor

Σ

Re: Fully encrypted OS with no backdoor

aldra

Re: Fully encrypted OS with no backdoor

WhiteCollarCriminal

Re: Fully encrypted OS with no backdoor

RustyShackleford

Re: Fully encrypted OS with no backdoor

SBTlauien

Re: Fully encrypted OS with no backdoor