| View previous topic :: View next topic |
| Author |
Message |
huhmz
n00b
Joined: 16 Aug 2002
Posts: 16
|
 Posted: Fri Aug 16, 2002 6:53 pm Post subject: Cryptographic Filesystems/layers, need tips |
 |
|
So far I have found CFS, TCFS, StegFS and something called Rubberhose.
The Problem with all of those seem to be that they are quite old, works only on 2.2 kernels. Are there no crypto fs/layers that work on 2.4?
Thanks |
|
| Back to top |
|
 |
daroz
n00b
Joined: 20 Jun 2002
Posts: 12
|
| Posted: Fri Aug 16, 2002 7:48 pm Post subject: |
|
|
If you're running the crypto kernel, try this...
| Code: |
dd if=/dev/zero of=/path/to/some/FILE bs=1k count=<size_in_k>
losetup /dev/loop0 /path/to/some/FILE -e <choose_encryption>
#You'll be prompted for key size and password - ONCE
mke2fs /dev/loop0 <add -j for ext3>
losetup -d /dev/loop0
losetup /dev/loop0 /path/to/some/FILE -e <choose_encryption>
# Enter your key size and password again and we'll fsck the filesystem to make sure you got it right
fsck /dev/loop0
|
If all is good here, mount the filesystem (from /dev/loop0) wherever you need it. If fsck failed, you got the password wrong.
I tried to do the same with an IDE harddrive but ran into odd problems. All examples I've seen like this use files, not harddrives so...
There's also a /proc/ setting somewhere you can see what encryptions options are available. I've heard serpent is pretty decent and yet fast.
_________________
Thank for for calling the Midvale School for the Gifted. Before asking your question in the forums, please try the search page. Thank you. |
|
| Back to top |
|
|
Frank Dittrich
n00b
Joined: 16 Aug 2002
Posts: 3
|
|
| Back to top |
|
|
huhmz
n00b
Joined: 16 Aug 2002
Posts: 16
|
| Posted: Fri Aug 16, 2002 10:24 pm Post subject: Thanks for informative answers |
|
|
I'll check all suggestions out, Im not sure if i need Plausable Deniability in my country but it would be nice with steganography support.
I'll report whatever findings in this thread. |
|
| Back to top |
|
|
Klavs
Guru
Joined: 22 May 2002
Posts: 536
Location: Denmark
|
| Posted: Fri Sep 12, 2003 6:22 am Post subject: |
|
|
Found a linux-2.4 stego filesystem for you (long live Google 
http://xena1.ddns.comp.nus.edu.sg/SecureDBMS/nsteg/nsteg.html
Hope you like it - and please remember to tell us what your findings are. I'm going to test too.
_________________
Best regards,
Klavs Klavsen
Denmark
Working with Unix is like wrestling a worthy opponent.
Working with windows is like attacking a small whining child
who is carrying a .38. |
|
| Back to top |
|
|
Klavs
Guru
Joined: 22 May 2002
Posts: 536
Location: Denmark
|
| Posted: Sat Sep 20, 2003 6:40 am Post subject: |
|
|
Tip from the author - to get nsteg to compile with latest kernels (also works with gentoo-sources) you just run make clean - before you continue as the README says
Then it works - try it out - and share you experiences in this thread.
_________________
Best regards,
Klavs Klavsen
Denmark
Working with Unix is like wrestling a worthy opponent.
Working with windows is like attacking a small whining child
who is carrying a .38. |
|
| Back to top |
|
|
Skorgu
n00b
Joined: 10 Sep 2003
Posts: 39
|
| Posted: Mon Dec 08, 2003 7:26 pm Post subject: |
|
|
I tried compiling this nsteg package just to test it out, but it doesn't include properly. Compilation runs with warnings, but modprobe fails. I built it on the same machine, under the same kernel, with /usr/src/linux set right. In fact, 2.4.19 has never been on this machine.
| Code: |
caltrop fs # uname -a
Linux caltrop 2.4.20-gentoo-r2 #13 SMP Sun Jun 29 00:36:56 UTC 2003
i686 Pentium III (Katmai) GenuineIntel GNU/Linux
caltrop fs # modprobe nsteg
/lib/modules/2.4.20-gentoo-r2/kernel/fs/nsteg.o: kernel-module version mismatch
/lib/modules/2.4.20-gentoo-r2/kernel/fs/nsteg.o was compiled for kernel version 2.4.19
while this kernel is version 2.4.20-gentoo-r2.
/lib/modules/2.4.20-gentoo-r2/kernel/fs/nsteg.o: insmod /lib/modules/2.4.20-gentoo-r2/kernel/fs/nsteg.o failed
/lib/modules/2.4.20-gentoo-r2/kernel/fs/nsteg.o: insmod nsteg failed
|
Hoping someone here has something obvious I'm missing before I go whining to the author. I wasn't able to find immediately where the source sets its kernel version with some simple grep-ing.
_________________
"I paid for four wheels, make 'em all drive" |
|
| Back to top |
|
|
|
Networking & Security
