Tales From /proc

I'm a UNIX Sysadmin, specializing in Solaris and Linux. We should ALL know this stuff, but sometimes a trick or tip slips by, so every time I teach someone a neat trick (or someone teaches me a neat trick) it'll get shared here.

Thursday, May 29, 2014

Truecrypt is dead. Long Live Truecrypt (with LUKS on linux!)

Since there's lots of speculation on the safety of Truecrypt binaries, if you're on linux, you can just forget about it.  LUKS supports truecrypt devices and containers with its own independent implementation.  Here's the TL;DR:

* Open a truecrypt container:

# cryptsetup tcryptOpen cryptfile mapper_device_name

* open a truecrypt container with a keyfile or keyfiles:

# cryptsetup tcryptOpen --keyfile your.keyfile cryptfile mapper_device_name


You can open a hidden or system by using the --tcrypt-hidden or --tcrypt-system switches.

EXAMPLE:

# cryptsetup tcryptOpen --keyfile bunnies.txt omgsecret.tc secretmapper

# mount /dev/mapper/secretnapper
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

About Me

My photo
I am currently a Unix Systems Engineer for a cloud-based EMR company. I've been making large, complex systems "go" since 1995. I've worked with Novell and Exchange in the past, and now specialize in Solaris and Linux.