Truecrypt hidden os question ?

Hi just wondering how do you move files from an encrypted running hidden os partition onto another partition or drive if truecrypt treats everything not inside the hidden partition as write protected. Is there a way around this ?

Thx

 

Four options:

1. Safest option: use a device encrypted removable flash media with a hidden volume on it. Using that you can move files to the flash's hidden volume and then go anywhere with them. Lots of options; using a TC portable folder on another flash will allow you to open the encrypted flash on a computer that doesn't even have TC installed. Read the manual.

2. Use a virtual machine with a "shared folders" setup. By having a shared folder (shared between your hidden OS and the VM) you can use the VM to write out any shared files directly to any media. The read only restriction will not apply to the VM. There are security implications for you to consider. WHERE did the file come from if confronted?

3. In some instances it is acceptable for a hidden OS to be internet connected provided the user is aware of how to tunnel and secure traffic, making sure the activity does NOT come back to his/her home network in any way. In this instance a file can be moved via internet (email/FTP), and again the assumption is that the user is acutely familiar with non-traceable email configurations and accounts. Secure FTP transfer works well if the server is trusted and secure. I have moved multi Gig files this way and its totally safe and secure.

4. Modify the source code and do your own build. The code can be changed removing that restriction, but beware of how you control the "on/off" because the read only provides amazing security. The normal hidden OS code eliminates ANY writes to other partitions on your computer, even if you have say 6 partitions. You do NOT want ANY marks on your computer outside of the hidden OS.


I have used all four of these options and they all work well. The safest is option 1 because the moved file will always be secured and you'll have no answers to give from any adversary. The other options (2-4) are available and I assure you they work well.

 

Thanks for the detailed response.

Completely separate question regarding making a more anonymous connection to internet whilst running hidden os is the following heading into the right direction if not please give some directions ?

First assuming the hidden os has been activated before copied to the hidden area.Then assuming the hidden os is win disable auto updates and any other service or program that might attempt to connect to the internet before a vpn connection(for example) is in place.Install vpn client installer from other drive onto hidden os connect to vpn and test then update win browse web etc.

 

I forgot to mention that there is a fifth option. If your machine has an optical drive (CDR/DVR) that type of drive is not restricted in the code. So, you could use a CDR and write out a file from within the hidden OS. Bear in mind that you now have a physical media with a file on it that is no longer hidden.


Regarding the various internet connection questions, you should start a thread in the privacy forums.