Comments on: Episode #1: Crypting a full Windows computer with TrueCrypt

By: Daniel Craig

Daniel Craig — Sun, 16 Nov 2008 08:59:15 +0000

Hello, I was looking around for a while searching for physical security and I happened upon this site and your post regarding Episode #1: Crypting a full Windows computer with TrueCrypt, I will definitely this to my physical security bookmarks!

By: Daniel Craig

Daniel Craig — Fri, 03 Oct 2008 16:00:56 +0000

Hi there, I was looking around for a while searching for computer system security and I happened upon this site and your post regarding Episode #1: Crypting a full Windows computer with TrueCrypt, I will definitely this to my computer system security bookmarks!

By: Daniel Craig

Daniel Craig — Fri, 26 Sep 2008 11:59:57 +0000

Hello, I was looking around for a while searching for disk encryption and I happened upon this site and your post regarding Episode #1: Crypting a full Windows computer with TrueCrypt, I will definitely this to my disk encryption bookmarks!

By: Daniel Craig

Daniel Craig — Sun, 07 Sep 2008 00:00:39 +0000

Hello, I was looking around for a while searching for computer physical security and I happened upon this site and your post regarding Episode #1: Crypting a full Windows computer with TrueCrypt, I will definitely this to my computer physical security bookmarks!

By: Daniel Craig

Daniel Craig — Tue, 02 Sep 2008 08:01:20 +0000

Hi there, I was looking around for a while searching for physical computer security and I happened upon this site and your post regarding Episode #1: Crypting a full Windows computer with TrueCrypt, I will definitely this to my physical computer security bookmarks!

By: Joseph

Joseph — Fri, 04 Jul 2008 05:59:39 +0000

partition encryption…

You have got to be kidding!…

By: Fred Zelders

Fred Zelders — Mon, 05 May 2008 18:53:45 +0000

Thanks for the podcast Brenno!

Can you say something about TrueCrypt compared to FileVault ( http://en.wikipedia.org/wiki/FileVault ) the encryption facility that is embedded in Mac OS X please?

By: fotoflo

fotoflo — Thu, 01 May 2008 14:01:37 +0000

Truecrypt provides excellent whole disk, partial disk, and “virtual partition/volume” encryption, no doubt about it. However, there’s a catch. Your data is really only as safe as the physical environment you keep it in.

see:
http://www.nytimes.com/2008/02/22/technology/22chip.html
for one of many ways your computer can be compromised.

Basically, almost nothing can stop a determined and resourceful attacker with physical access to your computer.

That said keeping your truecrypt volumes in an unmounted state may be a good safety precaution. another would be to use whole drive encryption and then using truecrypt volumes within that, which you keep unmounted.

Also, choose strong passwords. strong passwords that you can remember. but never store your password on your computer unencrypted, because your hard drive can be downloaded to someone elses hard drive and ALL strings in the drive can be added to a password cracking dictionary.

A trick i use is to take a password i have been using for a while, and then mutate it on paper, while keeping the way i pronounce it in my had. Say i used chose the word “macbookair” (I didnt, and you shouldnt because its now public, but this was a good password for a base because it takes three dictionary words and puts them togather for my password). Then what i might do is capitalize certain letters and change the o to 0: MacB00kAir, now i add some more shifts and it looks like MacB))kAir or maybe i move some things around and its now nACb))K02 (02 for air). This might seem diffucult, but once you have a strong password like this, there’s no need to change it often (some may disagree) and once its memorized and you use it every day for a week, its memorized.

Ok, there’s my 3 cents