Tim, et al.: Well now, this is quite useful information! I have been looking for a way to burn encrypted CD-RWs in a "standard" manner (at least for Linux). I am curious, can I use CD-Roast be used to burn the CD-ROM (I like its GUI)? Using cdrecord is fine, but I am just curious if you have tried that? One thing that has interested me for some time would be the ability to burn an encrypted disc in such a way that it could be readable under either Linux or Windows. Of course this (I imagine) would require firstly a port of loop-aes to Windows (which does not exist), and then the implementation of a virtual Linux filesystem under Windows. A friend has been looking into that for a while (porting loop-aes to windows), but has not had the time to get it started yet. I am curious, with respect to DVD burners, how do you think this kind of process (as you describe for making CDs) would translate into making DVD images? I am not a DVD burning expert at all (I know very little), but I do have a particular instance where being able to burn about 3-GB of encrypted data on a DVD would be explicity useful (even if only able to be read under Linux). I see the DVD burners are down to $499, but I have not acquired one yet as I am not sure if they decided on a standard yet, or if they are able to be read (the DVD-Rs/DVD-RWs) by standard DVD drives. Very Respectfully, Stuart Blake Tener, IT3 (E-4), USNR-R, N3GWG Beverly Hills, California VTU 1904G (Volunteer Training Unit) stuart@bh90210.net west coast: (310)-358-0202 P.O. Box 16043, Beverly Hills, CA 90209-2043 east coast: (215)-338-6005 P.O. Box 45859, Philadelphia, PA 19149-5859 Telecopier: (419)-715-6073 fax to email gateway via www.efax.com (it's free!) JOIN THE US NAVY RESERVE, SERVE YOUR COUNTRY, AND BENEFIT FROM IT ALL. Friday, March 01, 2002 6:54 AM -----Original Message----- From: linux-crypto-bounce@nl.linux.org [mailto:linux-crypto-bounce@nl.linux.org] On Behalf Of Tim Renner Sent: Thursday, February 28, 2002 4:37 PM To: Erik Kunze Cc: linux-crypto@nl.linux.org Subject: Re: Crypted CDROMs I don't know if this ever got resolved or not, but I just burnt an encrypted CD with ext2 format... here's what I did for anyone interested, step by step... Oh, I'm using loop-AES 1.5b... I never did get this to work with just the cryptoapi, but i had an old version... I'm assuming it was because of the IV mode problem... anyways, here's what I've done... // Create the original image dd if=/dev/urandom of=image.img bs=1M count=650 mke2fs -m 0 -b 1024 image.img mount -o loop image.img temp <Copy stuff into temp to fill the image> umount temp // Encrypt it // image.img must NOT be mounted at this point> losetup /dev/loop0 image.img losetup -e aes256 /dev/loop1 image.img <enter password> dd if=/dev/loop0 of=/dev/loop1 bs=1M conv=notrunc sync losetup -d /dev/loop0 losetup -d /dev/loop1 <test it, make sure everything mounts and you used the correct password> // Burn it cdrecord -v speed=8 dev=0,0,0 image.img <cd burns> // Mount it losetup -e aes256 /dev/loop0 /dev/cdrom <enter password> mount /dev/loop0 /mnt And that's that ;) Hope it helps ;) Give me feedback on whether that works for everyone or not... If you want a non-destructive encrypt, simply create a new file of the same size and mount that on /dev/loop1 when encrypting. -Tim Erik Kunze wrote: > > * Chris Schadl <cschadl@satan.org.uk> [020221 16:57]: > > Date: Thu, 21 Feb 2002 09:57:44 -0600 > > From: Chris Schadl <cschadl@satan.org.uk> > > Subject: Re: Crypted CDROMs > > > > # dd if=/dev/urandom of=~/crypto.iso bs=1M count=650 > > # losetup -e aes -k 192 /dev/loop0 ~/crypto.iso > > # mkisofs -r /stuff/SUPAR-SECRET-STUFF/ >/dev/loop0 > > # losetup -d /dev/loop0 > > > > Then you should be able to mount the encrypted iso image, or burn it to a > > CD-ROM. > > That's how I did! Please read my initial posting! Mounting of the image > fails. I haven't tried to burn the image and mount the CDROM. > > - > Linux-crypto: cryptography in and on the Linux system > Archive: http://mail.nl.linux.org/linux-crypto/ - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/ - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
