The bad thing about Truecrypt

[Tomwa]

Quote:

Originally Posted by mirimir

OK, that's more reasonable. But still, I think that decrypting a drive in place (to itself) will be slower and riskier than copying what you need to another drive.

Not sure how it's riskier to be honest. The main issue was that I didn't HAVE another drive (Thus the issue). Wouldn't be a problem if I could print my own money -.-

[mirimir]

Quote:

Originally Posted by Tomwa

Not sure how it's riskier to be honest.

The major risk that I'm considering is a crash (power failure or whatever) during the process. I know that NTFS handles that gracefully. It rolls back whatever didn't complete. I don't know how well Truecrypt would handle that. Anyone know?

[happyyarou666]

couldnt tell havent had too many powerfailures yet , thou i wouldnt think that itd be a problem imo as long as you dont have write cache buffer flushing disabled

[Enigm]

To the OP .
Why don't you separate your data and your OS ?
1 partition for windows, one for the rest, independently encrypted .
That way you only have to decrypt the small OS-partition, 60-80GB should be plenty for most people . Or you can just re-install on top of the encrypted partition .

To redcell :
How does it matter what program was used to encrypt ?
If people think forensic investigators don't know what 1TB of random data on a HDD means, you are deluding yourselves .
I can very quickly create EXACTLY the same partition-scheme as used by TC .
Does that PROVE I'm using TC ? No, it does not .

In the article you link to : http://www.shortinfosec.net/2009/02/...stem-with.html
we find this little gem :

Quote:

This hiding methodology is public, so even if the existence of the hidden OS is not divulged,
the investigators can destroy the hidden OS by filling the outer container with dummy files just to be on the safe side.

Yes please !!
PLEASE 'destroy the hidden OS ... just to be on the safe side' .. And see how any third-rate shyster will get the case kicked out of court .
Seriously .. Basing paranoia on the opinion of somebody who thinks forensic investigators destroy evidence on purpose ? Isn't that a felony btw ?

[Tomwa]

Quote:

Originally Posted by Enigm

To the OP .
Why don't you separate your data and your OS ?
1 partition for windows, one for the rest, independently encrypted .
That way you only have to decrypt the small OS-partition, 60-80GB should be plenty for most people . Or you can just re-install on top of the encrypted partition .

Either I havent explained this very well or you haven't read the thread, I had two drives, one broke, one remains, the one that remains was a FDE setup, I backed up my data onto the FDE OS disk in order to save it from the dying drive.

Quote:

Originally Posted by mirimir

The major risk that I'm considering is a crash (power failure or whatever) during the process. I know that NTFS handles that gracefully. It rolls back whatever didn't complete. I don't know how well Truecrypt would handle that. Anyone know?

I have a UPS so that is of little concern to me, does it make me more vulnerable to cold boot attacks? I'd imagine so but of that I am not really concerned, if somebody really wants to do a cold boot for my keys they could easily just freeze the RAM.