Requesting porting TrueCrypt to FreeBSD

Having trouble or general questions about porting software to FreeBSD? Ask here.

Requesting porting TrueCrypt to FreeBSD

Postby ph0enix » 02 Apr 2009, 17:40

What's the chance of someone actually doing that?
The OS-X source code can be downloaded here:
http://www.truecrypt.org/downloads2

Thanks! :)

J.
ph0enix
Member
 
Posts: 293
Joined: 05 Mar 2009, 19:35

Postby Watermelon » 03 Apr 2009, 08:04

Hi,

there is also a FreeBSD config in Makefile oft the Linux/OSX Sourcecode....

about a year ago i requested that port too.... the german bsdgroup made a experimental port, the gui worked quiet well....

the problem was that system completly hung when copying bigger(few MB) to a container(with pw and keyfile)....

i dont remember more but there should be more info in the froum of the german bsdgroup and also on portsmailinglist...

https://forum.bsdgroup.de/showthread.php?t=1704
http://lists.freebsd.org/pipermail/freebsd-ports/2008-February/046790.html

regards Watermelon
Watermelon
Junior Member
 
Posts: 2
Joined: 20 Nov 2008, 09:32

Postby oliverh » 05 Apr 2009, 08:20

I do think it has something to do with fusefs, but then I didn't try it anymore.
What was the goal of the Linux community--to replace Windows? One can imagine higher aspirations., Bill Joy
User avatar
oliverh
Member
 
Posts: 557
Joined: 16 Nov 2008, 19:21
Location: 127.0.0.1

Postby halplus » 14 May 2009, 06:31

Well FreeBSD has "native" heavy encryption since some time with GEOM (geom_eli). Take a look at:

http://en.wikipedia.org/wiki/GEOM
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/swap-encrypting.html

Is quite an advanced piece of software the one you decided to use ;). No game. Well maybe more user friendly things could make it more popular but the power is right there ;). Think about a GUI interface to that and you are unlikely to need truecrypt (and it's non-BSD license).
webmaster of advancedspl.net, gg-payment.com, naturtheke.com
halplus
Junior Member
 
Posts: 64
Joined: 08 Jan 2009, 06:07
Location: Cuba

Postby SirDice » 14 May 2009, 08:36

Unfortunately you can't attach a geli encrypted volume as a non-root user.

I for one would be interested in something that a non-root user could use. On the fly attaching/mounting of encrypted volumes (think USB harddisks/memory sticks).
Senior UNIX Engineer at Unix Support Nederland
Experience is something you don't get until just after you need it.
User avatar
SirDice
Old Fart
 
Posts: 16196
Joined: 17 Nov 2008, 16:50
Location: Rotterdam, Netherlands

Postby graudeejs » 14 May 2009, 08:49

you can....
you need to install and configure [port]security/sudo[/port]
you can even configure it to allow attaching without password (Not the geli passphrase, don't get confused)
User avatar
graudeejs
Style(9) Addict
 
Posts: 4591
Joined: 16 Nov 2008, 23:23
Location: Riga, Latvia

Postby SirDice » 14 May 2009, 10:14

killasmurf86 wrote:you can....
you need to install and configure [port]security/sudo[/port]
you can even configure it to allow attaching without password (Not the geli passphrase, don't get confused)


I am familiar with sudo but that's not what I had in mind. As in essence you still need root to do it (sudo takes care of the root bit). I want something a non-root user can use without the need for any type of root access.
Senior UNIX Engineer at Unix Support Nederland
Experience is something you don't get until just after you need it.
User avatar
SirDice
Old Fart
 
Posts: 16196
Joined: 17 Nov 2008, 16:50
Location: Rotterdam, Netherlands

Postby halplus » 25 Jun 2009, 05:54

Let any user mount/dismount arbitrary volumes in my system without my permission? I don't think that's a good idea.
webmaster of advancedspl.net, gg-payment.com, naturtheke.com
halplus
Junior Member
 
Posts: 64
Joined: 08 Jan 2009, 06:07
Location: Cuba

Postby SirDice » 25 Jun 2009, 06:41

halplus wrote:Let any user mount/dismount arbitrary volumes in my system without my permission? I don't think that's a good idea.


It's what vfs.usermount does. And hald plus a DE. Doesn't work for encrypted volumes though..
Senior UNIX Engineer at Unix Support Nederland
Experience is something you don't get until just after you need it.
User avatar
SirDice
Old Fart
 
Posts: 16196
Joined: 17 Nov 2008, 16:50
Location: Rotterdam, Netherlands

Postby hedwards » 01 Jul 2009, 18:37

halplus wrote:Is quite an advanced piece of software the one you decided to use ;). No game. Well maybe more user friendly things could make it more popular but the power is right there ;). Think about a GUI interface to that and you are unlikely to need truecrypt (and it's non-BSD license).

Well the reason why some want Truecrypt is mainly for interoperability purposes, I'm not personally aware of other options which are going to work in that fashion on Windows and Linux. Getting it to work on FreeBSD would mean that we wouldn't need to get the partitions working between programs.
hedwards
Member
 
Posts: 189
Joined: 16 Nov 2008, 18:52

Postby Dara » 28 Oct 2009, 12:45

Any news on this ?
it would be nice to have something that could be used on both BSD and windows..
Dara
Junior Member
 
Posts: 18
Joined: 05 Dec 2008, 09:37
Location: sweden

Postby dennylin93 » 28 Oct 2009, 13:10

halplus wrote:Let any user mount/dismount arbitrary volumes in my system without my permission? I don't think that's a good idea.


Sometimes it is necessary. People usually use a normal user for desktop environments. It would be quite absurd if they needed root privileges every time they plugged in a USB stick or use a CD/DVD.
dennylin93
Member
 
Posts: 784
Joined: 11 Dec 2008, 13:13

Postby feralape » 11 Nov 2009, 08:41

halplus wrote:Well FreeBSD has "native" heavy encryption since some time with GEOM (geom_eli). Take a look at:

http://en.wikipedia.org/wiki/GEOM
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/swap-encrypting.html

Is quite an advanced piece of software the one you decided to use ;). No game. Well maybe more user friendly things could make it more popular but the power is right there ;). Think about a GUI interface to that and you are unlikely to need truecrypt (and it's non-BSD license).


GEOM is really nice. Unfortunately it's a pain to use if you want to have an encrypted root drive. Also, you can't really share GEOM volumes like you can with truecrypt.

Truecrypt support a "file based" FS and you can stick that on a memory stick and open it on your Windows, Mac and Linux workstations.
feralape
Member
 
Posts: 146
Joined: 18 Nov 2008, 08:48

Postby honk » 11 Nov 2009, 22:05

feralape wrote:GEOM is really nice. Unfortunately it's a pain to use if you want to have an encrypted root drive.


A pain? Why do you think so? Is TrueCrypt better when it comes to complete disk encryption? Just curious...
honk
Member
 
Posts: 134
Joined: 03 Dec 2008, 00:09

Postby Oko » 12 Nov 2009, 04:27

honk wrote:A pain? Why do you think so? Is TrueCrypt better when it comes to complete disk encryption? Just curious...

Because he doesn't know what he is talking about. Geli is kernel driver. TrueCrypt is userland program. Colin Percival's scrypt is by far the best userland crypto function available. By the way Colin Parcival is one of the brightest FreeBSD developers and I am not saying that just because he has Ph.D. in mathematics from Oxford University;)
Wanting to learn is so rare a merit that it should be encouraged.
User avatar
Oko
Member
 
Posts: 374
Joined: 19 Nov 2008, 04:14
Location: Kosovo, Srbija

Postby halplus » 25 Nov 2009, 14:36

hedwards wrote:Well the reason why some want Truecrypt is mainly for interoperability purposes, I'm not personally aware of other options which are going to work in that fashion on Windows and Linux. Getting it to work on FreeBSD would mean that we wouldn't need to get the partitions working between programs.


Allright I buy the interoperability reason. What i still do not buy is the port. I mean wouldn't be better to instead of reuse code that works in Kernel Mode for another OS to reuse code from FreeBSD? (TrueCrypt has a KM driver at least in windows). Also does it needs to be done in KM? I mean in linux you can use loopback and losetup to mount a file as disk partition (thinking about reuse here and also base security on existing one)
webmaster of advancedspl.net, gg-payment.com, naturtheke.com
halplus
Junior Member
 
Posts: 64
Joined: 08 Jan 2009, 06:07
Location: Cuba

Postby halplus » 25 Nov 2009, 14:51

dennylin93 wrote:Sometimes it is necessary. People usually use a normal user for desktop environments. It would be quite absurd if they needed root privileges every time they plugged in a USB stick or use a CD/DVD.


Well in any case (including desktop usage) leave anybody do that is a magnificent security hole in some use cases (if not all). And.. do you need to grant all privileges to do that? I mean somebody mentioned sudo wich i think is a nice option (configurable at will). Or maybe sudo a script that mounts x or y only.
webmaster of advancedspl.net, gg-payment.com, naturtheke.com
halplus
Junior Member
 
Posts: 64
Joined: 08 Jan 2009, 06:07
Location: Cuba

Postby halplus » 25 Nov 2009, 15:02

halplus wrote:I mean in linux you can use loopback and losetup to mount a file as disk partition (thinking about reuse here and also base security on existing one)


Ok is not the same as in linux:

http://www.freebsd.org/doc/en/books/handbook/disks-virtual.html
webmaster of advancedspl.net, gg-payment.com, naturtheke.com
halplus
Junior Member
 
Posts: 64
Joined: 08 Jan 2009, 06:07
Location: Cuba

Postby dekloper » 21 Jan 2010, 11:22

halplus wrote:Well FreeBSD has "native" heavy encryption since some time with GEOM (geom_eli). Take a look at:

http://en.wikipedia.org/wiki/GEOM
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/disks-encrypting.html
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/swap-encrypting.html

Is quite an advanced piece of software the one you decided to use ;). No game. Well maybe more user friendly things could make it more popular but the power is right there ;). Think about a GUI interface to that and you are unlikely to need truecrypt (and it's non-BSD license).


It`s all very well, but in the current working system is not very convenient, since the cryptosystem based on geom_eli involves the destruction of existing data files.
I would like to see a solution, allowing encryption of existing data, such as truecrypt.
There is a similar opensource project for Win-platforms http://diskcryptor.net
dekloper
Junior Member
 
Posts: 4
Joined: 22 Apr 2009, 10:53

Postby danger@ » 22 Jan 2010, 00:16

you can always backup && restore onto an encrypted partition...
Looking for administrator? http://www.syscare.sk
User avatar
danger@
Member
 
Posts: 779
Joined: 08 Oct 2007, 18:59
Location: Bratislava, Slovakia

pefs

Postby jkusniar » 26 Jan 2010, 12:27

Hello. While looking around for encryption solution, which could be used by regular users to encrypt e.g. one directory inside their home dir, I have found this: http://wiki.freebsd.org/SOC2009GlebKurtsov. Does anyone have any experience with it?
jkusniar
Junior Member
 
Posts: 2
Joined: 16 Oct 2009, 18:56
Location: Slovakia

Postby foo_daemon » 21 Oct 2011, 17:20

Someone has (at long last?) complied with this request! [port]security/truecrypt[/port].
Apparently the latest version (7.1) supports the GUI, but hell, I would be fine with just a working command line version. I'm updating my ports and installing it now..
User avatar
foo_daemon
Junior Member
 
Posts: 37
Joined: 02 Mar 2009, 06:58
Location: Phoenix, Arizona (USA)


Return to Porting New Software

Who is online

Users browsing this forum: No registered users and 0 guests