Legit Reviews

Well, anyone have suggestions as to the best disk encryption software? I'm looking fr something that has to have a password entered before the system will boot from hibernation, stand by, restart, and shutdown. I was using PGP but I can't seem to get it to require a password when resuming from sleepmode, hibernation, or stand by, only on a cold boot & restart.

Thanks in adance to all those who may contribute their 2 pennies.

BiGg RiE

I would personally use 'syskey' it is meant to be un hackable i have used it quiet a few times to keep my brother off my pc he tries to hack it and jsut resets all of my saved passwords while trying to get rid off the key.

This is how you use it
Its built into windows so go to start
run enter 'syskey' (remove inverted commas)
and continue following prompts.

That lo0ks ok, but does it ask for a password from boot? I'm looking for something that won't POST unless u enter a password, syskey seems to be at the os level also i don't like how it says that once you enable it you can't disable it. Ideally I'd like something that would allow me to enable it when I take my system off site and then disable it once I'm back on site.

example:

Power on the system: Prompted for password
- enter correct password
- boot system

functionality in Windows GUI:
- Enable boot protection or disable boot protection

Thanks

Well i dont see the points of having one then, This password is 'un hackable' (i say it like this because i know someones going to say "but nothing is un hackable") It encodes and decodes everything on the fly so its very ahrd to hack, Note there is little performance loss but not noticable when running a decent PC. If you want one that wont even post just use bios. Unless its someone that knows what they are doing i doubt your Little brother or somone wont know how to wipe it.

You could set the Bios to ask for a password at boot up.
Then use software to encrypt the data through the OS (PGP would do). I don't know of any software that will prompt for a password again after standby, but you can set windows to ask for a login when the screensaver turns on.

"Syskey" will stop anyone browsing your "documents & settings" folder, when logged in as another user.

The other option is to install Linux and create an encrypted partition. You will then get prompted for a password at boot up or every time you want to mount the partition.
You can then use "SAMBA" or FTP (with SSL) to share your files. This way is a bit more extreme, but it's alot safer and you can install "TorrentFlux" and use that with your verizon fios ;)

Ok, Kenc51 once again some extremely sound advice, I do however have a few questions, Don't I always?

It seems like the linix partition example would be the best for my situation.

1st I haven't even used Linux before so do you have some links to a topic or website that could guide me through the setup process?

2nd with that option if someone takes my HDD out of my rig will they beable to get the info? I know you stated that I'd be prompted for the password everytime I mounted the drive but would someone beable to get that info if they put it into a different system?

Also, that is my main concern with the BIOS password and the the syskey situation; obviously if someone mounts the drive in another system the BIos option is bypassed. But what about the syskey? I mean I have 5 HDD in my system only 1 is partitioned in that I have like 20GB for windows XP and the rest is for programs. My other drives are all storge. So can I apply the syskey strategy to the storage drives or even externals for that matter? If I apply syskey is it effective only to the os partition? I don't keep any important files on my os partition in an effort to minimize loss in the case of the inevitable windows crash.

Another question which is related to the answer to the one above. If syskey does apply to storage or logical drives, in the event of that pending crash is the info on that drive lost because i need the originally installed os to acess it? This could be a problem because I have a drive that has a ton of software on it and when i build rigs for people I use that to install software from. So in that case would a syskey protected drive be accessable? Or a scenerio where I'm building a new system and want to use an existing drive in it, I ussually just have to plug it in to the sata plug on the MOBO and it pops up in my computer, would that not happen with either the linux or syskey options?

I know it's alot to ask but thanx in advance,

BiGg RiE

BiGg RiE wrote:Ok, Kenc51 once again some extremely sound advice, I do however have a few questions, Don't I always?

It seems like the linix partition example would be the best for my situation.

1st I haven't even used Linux before so do you have some links to a topic or website that could guide me through the setup process?

2nd with that option if someone takes my HDD out of my rig will they beable to get the info? I know you stated that I'd be prompted for the password every time I mounted the drive but would someone beable to get that info if they put it into a different system?

Also, that is my main concern with the BIOS password and the the syskey situation; obviously if someone mounts the drive in another system the BIos option is bypassed. But what about the syskey? I mean I have 5 HDD in my system only 1 is partitioned in that I have like 20GB for windows XP and the rest is for programs. My other drives are all storge. So can I apply the syskey strategy to the storage drives or even externals for that matter? If I apply syskey is it effective only to the os partition? I don't keep any important files on my os partition in an effort to minimize loss in the case of the inevitable windows crash.

Another question which is related to the answer to the one above. If syskey does apply to storage or logical drives, in the event of that pending crash is the info on that drive lost because i need the originally installed os to acess it? This could be a problem because I have a drive that has a ton of software on it and when i build rigs for people I use that to install software from. So in that case would a syskey protected drive be accessable? Or a scenerio where I'm building a new system and want to use an existing drive in it, I ussually just have to plug it in to the sata plug on the MOBO and it pops up in my computer, would that not happen with either the linux or syskey options?

I know it's alot to ask but thanx in advance,

BiGg RiE

1.) I don't have any specific guides for Linux. If you go the Linux route, you'll need a second PC. This rig can then be your File Server / Torrent Box and even your Firewall if you want. You can also setup DynDNS to access your files when not @ home. I've set this up and works great, my only issue is I can't stream the video files, it always wants to download them, and on my 384k upload speed, it can take some time.
Ubuntu is prolly the best Distro to start with as there's tons of tutorials etc available on the Ubuntu Forums.
You'll need to install Ubuntu as normal, then open "GParted" (partition program) and create a new partition (EX3 or ReiserFS would do best as they are "journalised", which means better data entegrity) then select "Enable encryption" - You will be then asked to choose a password (DON'T FORGET THIS PASSWORD!!!)
You'll be asked to create a "mount point" for the new partition, this is the directory where you want to access the files. The best place is prolly "/home/your username/share
This will mean the directory/partition will be called "share" and will be stored in your "Home" directory
Every time you boot Linux, it will ask you to enter your password so it can mount this encrypted partition/drive. If you don't enter a password Linux will just boot and won't try to mount the partition. You can also manually mount the partition when the OS has loaded by typing "sudo mount /home/your username/home/share" --> You'll then be asked for a password.
If you have to reinstall Linux, don't worry, you can always re-mount the partition, as long as you know the password (this password is separate/independent from you system "ROOT" password!)

2.) This partition won't be visible to anyone unless they have an OS that can read either EX3 or ReiserFS (depending on what FS you choose) AND they must try and mount it using your password. The data is stored on the drive in encrypted format.
Don't use encryption on any drive/partition that's used often by the OS as it lowers performance, it's fine for storage as that data isn't accessed often.

3.) Syskey only sets permissions to files & folders on the drive for the Kernel that's installed. ie. If you move the drive, or use a Linux boot CD, the data can still be accessed.

I used a guide for setting up TorrentFlux, SAMBA, FTP etc. it can be found in two parts Part 1 & Part 2

I hope this helps some...........Linux is a viable route to take and I encouraged everyone to try it, but it does take time to adjust...........I've been using it on & off for years and I still don't know alot of the basics.
We also have a Linux thread here, there's some useful info for beginners Link

This post was made using a Dell Laptop running 64bit Ubuntu

Ken thanx for the info!

The Linux option definitley has alot with it. I'm still processing what I read but I've got the general Idea. Basically I'll be making a second most likely lower powered rig for files that are not access alot. This sound like something I would definitly like to try with all the spare parts I have laying around.

For right now I've activated the BIOS password I think I might just go with the PGP for right now, it seems like the simple solution.

I think I'm gonna go the linux route soon though it sounds like it offers the best reliablity and security. Thanx for the links and info.

Until my next delima, be easy.

Everyone else who might happen upon this forum any other suggestions are more than welcome.

BiGg RiE

I use an encryption programm rohos disk http://www.rohos.net/disk
hope it's the programm you are looking for.

PGP Personal Desktop PRO is the answer. My #1 choice as well