Normally you would not want to hard code it, but rather pass it into your script as a parameter. Here I’m going to keep it small for demo purposes and use 200 megabytes. If you just list a number, VeraCrypt assumes you mean bytes, but you can also affix M for megabytes, G gigabytes, K kilobytes, and so on. Next we indicate how big we want our container to be. create "/Users/arcanecode/Documents/temp/vctest.vc" In addition, you’ll also want to change the user folder from arcanecode to your username. You’ll want to change this to the location where you store your volumes. For this demo, I’ve created a temp folder in my Documents directory. We next tell VeraCrypt we want to create a new file container, and where it is to be stored at. Note, the –text parameter must be the FIRST parameter you pass in, or it will not work. The -text parameter says we want to use VeraCrypt in text mode, not GUI. Applications/VeraCrypt.app/contents/MacOS/VeraCrypt The first item is the path to the VeraCrypt application, assuming you installed it in the default location. OK, that’s a bit hard to read, so let me break it out into each part below. Applications/VeraCrypt.app/contents/MacOS/VeraCrypt -text -create "/Users/arcanecode/Documents/temp/vctest.vc" -size "200M" -password MySuperSecurePassword1! -volume-type normal -encryption AES -hash sha-512 -filesystem exfat -pim 0 -keyfiles "" -random-source /Users/arcanecode/Documents/temp/randomdata.txt Please note that while your blog reader may wrap the command below, it should be one line in your shell script. OK, let’s get started! Creating a Containerįirst off, let’s look at the long line of code needed to create a container. I’ll update it over time as needed, and it may be easier for you to download, or cut and paste from it. While I will be providing samples here, you should also check out the project I have on GitHub that goes with this post, VeraCrypt-CommandLine-Examples. It’s compatible with macOS BigSur and Catalina, and probably older versions too, check their site if you have that need. It’s free, fast to install and takes very little in the way of system resources. In order for macOS to be able to read the variety of filesystems VeraCrypt supports, you need to install a free utility, macFUSE. You can find out more in my first post of the series, VeraCrypt – A Powerful Encryption Utility. Naturally, you’ll have to have VeraCrypt installed. In this post we’ll focus on macOS, in the next two posts we’ll cover Windows and Linux. Creating a container, mounting a container (aka volume), getting a list of mounted volumes, and finally dismounting your volumes.Īs it turns out, the command line syntax is a bit different for all the major operating systems. In this, and the next two posts, we’ll see how we can automate VeraCrypt from the command line. In my last two posts I showed how to use the encryption utility, VeraCrypt, to create encrypted containers and drives to securely store data. In addition, security is an ever increasing need in today’s world of hacks and ransomware. More information about the features of VeraCrypt may be found in the documentation.Automation is the key to success, especially in the DevOps world. Provides plausible deniability, in case an adversary forces you to reveal the password: Hidden volume (steganography) and hidden operating system. Parallelization and pipelining allow data to be read and written as fast as if the drive was not encrypted.Įncryption can be hardware-accelerated on modern processors. This is acceptable to the legitimate owner but it makes it much more harder for an attacker to gain access to the encrypted data.Ĭreates a virtual encrypted disk within a file and mounts it as a real disk.Įncrypts an entire partition or storage device such as USB flash drive or hard drive.Įncrypts a partition or drive where Windows is installed (pre-boot authentication).Įncryption is automatic, real-time(on-the-fly) and transparent. This enhanced security adds some delay only to the opening of encrypted partitions without any performance impact to the application use phase. It can load TrueCrypt volume and it offers the possibility to convert TrueCrypt containers and non-system partitions to VeraCrypt format. VeraCrypt also solves many vulnerabilities and security issues found in TrueCrypt. VeraCrypt picks up from where TrueCrypt left and it adds enhanced security to the algorithms used for system and partitions encryption making it immune to new developments in brute-force attacks. Brought to you by IDRIX and that is based on TrueCrypt 7.1a. VeraCrypt is a free open source disk encryption software for Windows, Mac OSX and Linux.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |