Linux-Voice-Issue-001

Recommendations

Info

GROUP TEST ENCRYPTION Noteworthy features What makes our chosen few stand out from the crowd? TrueCrypt is the most portable solution of all the tools in this group test, because you can use the application without having to install it. One of its most notable features is the ability to create a hidden volume inside another encrypted volume. Although many experts have played down this feature’s effectiveness in concealing the fact that there’s a hidden container from a determined attacker, it does provide plausible deniability to casual inspection. Under Windows you can even run a hidden operating system from this partition, though this functionality, as with many of TrueCrypt’s specialist features, is unavailable on Linux. BestCrypt also enables you to create a hidden container inside an already encrypted volume. In fact, with BestCrypt, unlike TrueCrypt, you can create multiple hidden containers. BestCrypt also offers the ability to protect existing hidden containers when creating a new one. Using the tool you can also encrypt the container headers, which conceals the fact that you have an encrypted container. The tool also enables you to re-encrypt containers, change their ciphers and encryption keys, and also lets you add multiple passwords. Zulus, Sir – faahsands of ’em zuluCrypt’s main attraction is that it lets you manage different types of encrypted volumes, including those created by dm-crypt/LUKS and TrueCrypt. It can also encrypt individual files with GPG. The one feature common to both stacked filesystem encryption tools is the portability of the encrypted files that can be decrypted on other operating systems as well. Furthermore, eCryptfs lets you assign independently revocable multiple keys for the same encrypted data. Usability Do you need a superior intellect to use these tools? Tools that encrypt your data should be handled with care. The FAQs of encryption software deal with accidental data loss because of forgotten passwords, misplaced key files or damaged headers. The same software that guards your data might also prevent you from accessing it ever again. TrueCrypt Because of TrueCrypt’s unclear licensing terms, the software isn’t available in the repositories of any Linux distro and has to be downloaded from its website in the form a compressed installation script. We also don’t like it that TrueCrypt requires you to either use a sudoers configuration or run the tool as the root user. The app has a graphical interface and can also be controlled from the command BestCrypt The proprietary tool isn’t the easiest to install, but its documentation explains the process in detail. Like TrueCrypt, the app has a graphical interface and a commandline utility, which has more functions than the GUI. For example, you can benchmark the performance of the various ciphers supported by BestCrypt only via the CLI. The graphical interface is pretty simple to navigate. You get buttons to create a This places even more responsibility on the developers of encryption software to make sure their users aren’t overwhelmed by the tools at their disposal. In addition to being easy to install, a well designed tool should expose its features correctly, so that it doesn’t force the user to look for the help file or support on the forums. line. The step-by-step volume creation wizard makes the tool ideal for new users. TrueCypt also has an option to benchmark the speed for encryption/decryption of various supported encryption ciphers. You can use the software to organise volumes and mount them with a single click. The tool also lets you change the encryption password and add or remove keyfiles to volumes. TrueCrypt suffers from its bespoke licence, which keeps it out of distro repositories. new container or load an existing one. New users can create a container simply by specifying a size and selecting the location of the container. Advanced users can optionally bring up additional options to select a filesystem for the container, change its encryption algorithm and encryption mode. You can perform various tasks on the container before mounting VERDICT TrueCrypt BestCrypt zuluCrypt eCryptfs EncFS BestCrypt costs €49.95, and the Linux version doesn’t support full-volume encryption. 32 www.linuxvoice.com
ENCRYPTION GROUP TEST zuluCrypt ZuluCrypt’s GUI isn’t as polished as BestCrypt’s but is more intuitive than TrueCrypt’s. You get separate options to create an encrypted container in a file and in a partition. You can also create random keyfiles and use these to encrypt the containers. If you use the app to create a LUKS container, the app will remind you to back up its header immediately after creating the container. The tool also has options to encrypt and decrypt standalone files and securely erase a device by writing random data to it, as well as a graphical tool for mounting and managing volumes. Support and documentation When you’re stuck and you need help, where do you turn? eCryptf The best thing about eCryptfs is that it’s available in all major Linux distributions, so you can install the ecryptfs-utils package using your distribution’s package manager. This will install a bunch of individual utilities to create, mount, and manage all aspects of the file system level encryption system. EncFS EncFS doesn’t have an official graphical front-end, but Gnome users can use the Gnome Encfs Manager to manage and mount directories with it. The EncFS utility comes in several distros, including Fedora. Setting up an EncFS-encrypted folder is similar to eCryptfs, although instead of using mount you need to use the encfs ZuluCrypt is a front-end to the crypsetup utility, but it also has its own CLI version. When you create a new encrypted directory, the tool will take you through a command-line wizard to help you configure the directory. You’ll be asked to select one of the six supported ciphers and its length to encrypt the directory and you can also choose to encrypt the filename within this directory as well. eCrypt is simple to set up: just create a directory that you want to encrypt and mount it as the ‘ecryptfs’ type. You can also use the utilities to set up a private directory and encrypt the swap. binary. EncFS also requires that two directories are used to keep encrypted and decrypted files. It’s common practice to store the encrypted files inside a hidden directory. When you mount a new encrypted directory, you get two preconfigured settings with different encryption settings. TrueCrypt includes a comprehensive 150-page user guide, which provides detailed instructions on using the application as well as educating users about the precautions they must take when dealing with any kind of encrypted data. There’s also a step-by-step beginner’s guide and an FAQ that discusses common issues such as forgetting encryption passwords and how to use the software on a removable device. The forum on the website (forums.truecrypt.org) has a dedicated board on problems related to the Linux version of TrueCrypt. When we checked, the latest update was a week ago, whereas the Mac forum had been updated that day. Either Linux users are better than Mac users at using encryption software, or there just isn’t as much interest in the Linux version. Or maybe it’s a bit of both. Read the manual, and the FAQ BestCrypt also has a detailed user guide as well as a quick start guide and a forum board, but no paid support, while the primary source of usage information about eCryptfs is in the form of man pages for the various utilities. It’s the same with EncFS, although its website hosts some information about the tool for new users. Documentation is the weakest point of zuluCrypt. It has no user guide and no how-tos that explain basic usage of the application. However its developer makes up for that by being quite vocal and active on the popular forum boards. From the Help menu in the app you can find out the default ciphers for the various types of containers you can create with the app and some brief but important information such as the importance of backing up LUKS headers. The FAQ on the zuluCrypt website answers some pretty useful questions and is a must-read for all users. You can invoke EncFS in expert mode, which lets you manually pick the various encryption settings. VERDICT TrueCrypt BestCrypt zuluCrypt eCryptfs EncFS www.linuxvoice.com 33
Page 1: The magazine that gives back to the
Page 4 and 5: CONTENTS We are all in the gutter,
Page 6 and 7: ANALYSIS NEWSANALYSIS The Linux Voi
Page 8 and 9: DISTROHOPPER DISTROHOPPER We’ve t
Page 10 and 11: GAMING ON LINUX GAMING ON LINUX The
Page 12 and 13: MAIL YOUR LETTERS Got something to
Page 14 and 15: MAIL SATNAV SIGHS Linux Voice! I’
Page 16 and 17: LUGS ON TOUR LUGS ON TOUR Blackpool
Page 18 and 19: SHOW REPORT FOSDEM The crazy cats o
Page 21 and 22: REVIEWS INTRO REVIEWS The latest so
Page 23 and 24: MAGEIA 4 REVIEWS direct links to re
Page 25 and 26: LIGHTWORKS PRO 11.5 REVIEWS Lightwo
Page 27 and 28: NEXUS 5 REVIEWS Google Nexus 5: thr
Page 29 and 30: REVIEWS BOOKS Culture & Empire: Dig
Page 31: ENCRYPTION GROUP TEST Supported cip
Page 35 and 36: ENCRYPTION GROUP TEST OUR VERDICT E
Page 37 and 38: NEXT MONTH NEXT MONTH IN ON SALE TH
Page 39 and 40: FREE SOFTWARE FEATURE For so long,
Page 41 and 42: FREE SOFTWARE FEATURE MIR Few thing
Page 43 and 44: 29 30 We should have a new release
Page 45 and 46: REACTOS 44 Version 0.4 will include
Page 47 and 48: FLORIAN EFFENBERGER INTERVIEW “Wh
Page 49 and 50: FLORIAN EFFENBERGER INTERVIEW of th
Page 51 and 52: BITCOIN FEATURE HASHTAG Sellers can
Page 53 and 54: BITCOIN FEATURE ANONYMITY Bitcoin h
Page 55 and 56: BITCOIN FEATURE These two things al
Page 57 and 58: CROWDFUNDING FEATURE TOP TIPS FOR C
Page 59 and 60: CROWDFUNDING FEATURE MIKE SAYS… T
Page 61 and 62: FAQ WAYLAND cheap terminals could c
Page 63 and 64: SYSADMIN put them in /etc/systemd/s
Page 65 and 66: CLOUDADMIN Cloud anatomy OpenStack
Page 67 and 68: FOSSPICKS Free-form data organiser
Page 69 and 70: FOSSPICKS Log file monitor BEOBACHT
Page 71 and 72: FOSSPICKS FOSSPICKS BRAIN RELAXERS
Page 73 and 74: TUTORIALS INTRO TUTORIALS Dip your
Page 75 and 76: TUTORIAL PGP DIGITAL SIGNING OpenPG
Page 77 and 78: BREWPI TUTORIAL somewhere and a Ras
Page 79 and 80: BREWPI TUTORIAL THE BREWPI SURVIVAL
Page 81 and 82: BREWPI TUTORIAL are three different
Page 83 and 84:
BREWING YOUR OWN BEER: A BRIEF ENCO
Page 85 and 86:
OWNCLOUD 6 TUTORIAL “config” di
Page 87 and 88:
OWNCLOUD 6 TUTORIAL OwnCloud’s ca
Page 89 and 90:
TUTORIAL ADA LOVELACE go in a singl
Page 91 and 92:
TUTORIAL ADA LOVELACE stage (A0), a
Page 93 and 94:
ARCH TUTORIAL 2 FIRST BOOT Before y
Page 95 and 96:
ARCH TUTORIAL another operating sys
Page 97 and 98:
PYTHON CODING compact forecast for
Page 99 and 100:
PYTHON CODING You’ll find a compr
Page 101 and 102:
EUCLID CODING euclid(100,140) The i
Page 103 and 104:
GREP GAMES CODING However, this doe
Page 105 and 106:
GREP GAMES CODING Challenges Test y
Page 107 and 108:
VIM MASTERCLASS followed by a manda
Page 109 and 110:
FIREFOX IN DEPTH Web developer tool
Page 111 and 112:
FOUNDERS PAGES Beal, James Derrick,
Page 113 and 114:
DVDPAGES Developers’ paradise Fed
Page 115:
Supernova remnant Cassiopeia A Data
show all

Linux-Voice-Issue-001

Create successful ePaper yourself

Delete template?

Save as template?