LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices



Reply
 
Search this Thread
Old 06-24-2007, 04:24 PM   #1
Z038
Member
 
Registered: Jan 2006
Distribution: Slackware
Posts: 805

Rep: Reputation: 158Reputation: 158
Truecrypt on USB key drive, step by step help?


Can someone walk through the steps for creating a truecrypt volume with a hidden volume inside on a USB key drive? The volume must be mountable and usable by a non-root user.

I've been able to create one, but only root can use it.

Example: 32M key drive on /dev/sdc1

First run cfdisk.

Code:
cfdisk /dev/sdc1   
  • select entire partition
  • bootable
  • type 06 = FAT16 (what else would work here?)
  • write partition table
Next create the truecrypt outer (normal) volume. Note that I didn't run mkfs to format a file system on the USB key drive because the truecrypt step apparently creates one, or at least it prompts you to ask.

Code:
truecrypt --type normal --size 32M  /dev/sdc1
  • select FAT format
  • select hash and encryption keys
  • enter password / passphrase twice
  • wiggle mouse until done
Next create the truecrypt hidden volume (following examples from truecrypt web site).

Code:
truecrypt --type hidden --size 1M  /dev/sdc1
  • select FAT format
  • select hash and encryption keys
  • enter password / passphrase twice
  • wiggle mouse until done
Next mount the outer volume with protection for the inner hidden volume.

Code:
truecrypt -P /dev/sdc1 /mnt/tc
  • enter password / passphrase
  • enter password / passphrase for hidden volume
I had to do all of this as root. I wasn't able to get any of it, not even the first truecrypt volume creation, to work unless I was root, else I got permission denied. The file system owner is root from the top directory down, and not even root can change it. So I can't mount it or write to it except as root.

The way I created the hidden volume was according to the sample instructions on the truecrypt web site, but it doesn't seem to make a lot of sense to do it that way since its existence is very obvious when it prompts you for a hidden volume password when you mount the nonhidden volume. I thought the idea was for the hidden volume to be undetectable unless you knew it was there, but if anyone can issue a truecrypt mount command and enter the outer volume password (let's say after they broke your fingers to get it), they'll know immediately about the existence of the hidden volume... there go your toes.

But I'll save that bit to work out later. For now, I'd be happy to learn how to create a truecrypt volume on a USB key drive (the entire volume encrypted) that a non-root user can mount and use.
 
Old 07-05-2007, 12:05 AM   #2
stress_junkie
Senior Member
 
Registered: Dec 2005
Location: Massachusetts, USA
Distribution: Ubuntu 10.04 and CentOS 5.5
Posts: 3,873

Rep: Reputation: 331Reputation: 331Reputation: 331Reputation: 331
Why don't you just use sudo when you are logged in as the normal user?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Step-By-Step Instruction to install Linksys WPC11 Ver.4 Wireless Card Zypher Linux - Hardware 8 08-12-2009 11:43 AM
Request: Step by step solution for USB cdrom installation holst Debian 2 12-19-2006 08:33 PM
Step by Step guied for Installation pent@net Dvb card under linux mobassir Linux - Networking 4 06-07-2006 08:31 PM
I need a step by step help to instal Suse 9.3 Pro on the same hdd as XP Home & 2003 suse91pro Linux - General 4 09-07-2005 02:15 PM
Mounting Pen-Drive: How to step by step raulgotor Linux - Hardware 1 07-11-2004 11:26 AM


All times are GMT -5. The time now is 12:59 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration