Using Truecrypt and dm-crypt

Click to go back to the root page for Operation Electronic Leviathan

This wiki page will explain how to create encrypted file containers and partitions. GNU/Linux users should use dm-crypt. Windows users may use Truecrypt, however because Windows is closed source proprietary software it is NOT safe for privacy. Windows users are highly advised to learn how to use an operating system that respects their freedom and privacy, by operating under the philosophy of free and open source software. Good beginner operating systems for this purpose are Linux Mint, Ubuntu, or the Pirate Party's own Pirate Linux.

=Creating Truecrypt container (Windows):=

See also: Truecrypt documentation

If you have not done so, download and install TrueCrypt. Then launch TrueCrypt by double-clicking the file TrueCrypt.exe or by clicking the TrueCrypt shortcut in your Windows Start menu. After launching Truecrypt the main window should appear. Click Create Volume (marked with a red rectangle for clarity).



The TrueCrypt Volume Creation Wizard window should appear.

In this step you need to choose where you wish the TrueCrypt volume to be created. A TrueCrypt volume can reside in a file, which is also called container, in a partition or drive. In this tutorial, we will choose the first option and create a TrueCrypt volume within a file.

As the option is selected by default, you can just click Next.



In this step you need to choose whether to create a standard or hidden TrueCrypt volume. In this tutorial, we will choose the former option and create a standard TrueCrypt volume.

As the option is selected by default, you can just click Next.



In this step you have to specify where you wish the TrueCrypt volume (file container) to be created. Note that a TrueCrypt container is just like any normal file. It can be, for example, moved or deleted as any normal file. It also needs a filename, which you will choose in the next step.

Click Select File.

The standard Windows file selector should appear (while the window of the TrueCrypt Volume Creation Wizard remains open in the background).



In this tutorial, we will create our TrueCrypt volume in the folder D:\My Documents\ and the filename of the volume (container) will be My Volume (as can be seen in the screenshot above). You may, of course, choose any other filename and location you like (for example, on a USB memory stick). Note that the file My Volume does not exist yet – TrueCrypt will create it. IMPORTANT: Note that TrueCrypt will not encrypt any existing files (when creating a TrueCrypt file container). If you select an existing file in this step, it will be overwritten and replaced by the newly created volume (so the overwritten file will be lost, not encrypted). You will be able to encrypt existing files (later on) by moving them to the TrueCrypt volume that we are creating now.*

Select the desired path (where you wish the container to be created) in the file selector.

Type the desired container filename in the File name box.

Click Save.

The file selector window should disappear.



'''* Note that after you copy existing unencrypted files to a TrueCrypt volume, you should securely erase (wipe) the original unencrypted files. There are software tools that can be used for the purpose of secure erasure (many of them are free). A good tool for this purpose is Eraser.'''

=System encryption with dm-crypt (GNU/Linux)=

See also: Archlinux wiki page for using dm-crypt.