sgosnell |
08-17-2020 01:10 PM |
To be more verbose, the point of disk encryption is to insure that no one can access the data on the disk without the password. If there were a way to do that, the encryption method would be useless. One needs to weigh the benefits and downsides of encrypting a disk before doing it. If you do want encryption, you need to put the password somewhere it is safe, but from which you can reliably retrieve it. I use a password safe, and I also encrypt some data using gnupg. Some people write it down on paper and keep it in a place they consider safe. Whatever works for you, but all have some downsides. Paper can be found by others, be accidentally destroyed by fire, flood, the pet dog, or any number of other things. With a password safe or encrypted file, you have to remember the password to that. I can remember strings of characters that I use a lot, but it's harder for those I seldom use. I use my password safe almost every day, sometimes many times a day, so I have no fear of forgetting it. It's long, and I don't worry about a dictionary attack breaking it even if someone with a supercomputer decided to spend a few years trying to break it. But the root password for every computer is not something I would trust myself to remember, so those go into the password safe. I use keepassxc, which I run on my desktop, my phone, my chromebook, and will run on Windows if I become truly desperate. The database is stored on Dropbox and on Google Drive, so I don't fear losing it. If someone can access the database, and crack it without the password, then they have everything, but I don't spend time worrying about that. Encryption works. So the only suggestion I have for your presumably encrypted disk is to reformat it and make better plans about keeping up with the password.
|