Password/Lock of Ceedo Drive
Posted on Jan 08, 2009 under xn--zqqs84h3is.com | editI also have a U3 pendrive, and use Ceedo in the external HDD. Ceedo for sure have more potential that U3, specially becuase of Argo installer. I could install even Microsoft Money (a bit slow, but that's OK), and I use it a lot.
But the U3 drive have a feature that I would like to see in Ceedo. It's the Password to start the pendrive and open the files. Ceedo also have a password feature, but even if I don't start Ceedo, I'm still able to see the documents folder and have access to all files. That's not secure enough for me.
Well, that my suggestion.
Here's a neat script I found online.
This script comes in the form of a .bat file that encrypts and hides a single folder. You run the script to encrypt and hide the folder and its contents, and then run it again to unencrypt and unhide the folder and its contents.
To set the password for the secure folder the script will create, right-click on the .bat file and select Edit from the context menu. On line 23, you will see "if NOT %pass%==type_password_here goto FAIL".
At first glance your files are protected but all that has happened is your folder got renamed and the attributes got changed. This will hold off a novice, but if you have your drive taken by someone that knows what they are doing then you have not even slowed them down.
I as a tester have all my hidden files showing along with extensions. When I ran this script I saw that it just renamed the folder to a filename scheme and made it "hidden". All I had to do was rename the file to match a folder scheme, not even the same name, and I had access to the contents. I didn't even need the password.
There are several freeware and open source encryption apps out there, there is no need to wait for Ceedo to reinvent the wheel or develop an add-on which may or may not be charged for.
Invisible Secrets is file encryption and is not free $40 +updates…whew! Why buy when there are freeware and open source to do the same thing? Suite of junk.
PGP Desktop Home is not free either; Windows subscription license $83 wow! File encryption, email encryption, encrypted zip and encrypted virtual disks. Is that what you’re looking for? All can be had elsewhere for free with a little searching if you really need those things.
TrueCrypt is excellent and free, but you need admin rights to run everything from within an encrypted volume. You can use TCExplorer and TrueCrypt with an encrypted container, which gets around the admin rights issue and protects your data, but doesn’t allow apps to be installed within.
If you are really concerned about security and don’t want to deal with all the software issues; go buy a hardware based encryption USB hard drive (Apricorn Aegis) or flash drive (Kingston Data Traveler Secure) and install whatever you want on it.
Lots of options, but data security, especially portable solutions, is a more complex issue than implementing a simple password.
Regards,
TrueCrypt requires admin rights on the workstation in order to work, as it must install a system-level driver for on-the-fly encryption/decryption.
Long story made short, if you plan to use a TrueCrypt protected drive on a locked-down computer, you'll be stuck.
I think that you will find that if the machine is locked down enough to not let you use TrueCrypt that you will be lock out of using Ceedo, that is if they let you use a thumb drive to begin with.
Something to Note: If you use Ceedo on a TC volume you will want to make sure that it is at the size that you really want, because after you install Ceedo and get your lic files for that volume you will find that if you decide to resize the volume that you will have to create a new one. Then you will have to get new lic files from Ceedo Support for the new volume.
-RBF
Ceedo Evaluator
I as a tester have all my hidden files showing along with extensions. When I ran this script I saw that it just renamed the folder to a filename scheme and made it "hidden". All I had to do was rename the file to match a folder scheme, not even the same name, and I had access to the contents. I didn't even need the password.
If somebody is determined enough and has the right skills and the right software, your data will an open book to them regardless of what security solution you use to protect your files.
I'd like to be able to secure everything so that if I lost the drive, I wouldn't have all my email at easy access, while at the same time being able to sync it for backup purposes easily and probably not with a master password on the drive as a whole (since I'm already setup, although I guess I can backup and copy it all back over). FYI, I'm a novice :p and this is one of the last little things on my wishlist (for now ;))
Thanks for your input.
David
Here's a neat script I found online.
This script comes in the form of a .bat file that encrypts and hides a single folder. You run the script to encrypt and hide the folder and its contents, and then run it again to unencrypt and unhide the folder and its contents.
To set the password for the secure folder the script will create, right-click on the .bat file and select Edit from the context menu. On line 23, you will see "if NOT %pass%==type_password_here goto FAIL"
This is the line you are conserned with. replace the words, "type_password_here" with your password. Do not enclose your password in quotes, and do not put a space between "==" and the first character of your password. If you put in a space, the space becomes part of your password.
What I recommend doing is extracting the script to the folder on your Ceedo drive in which you want the secure folder to be located. Next, open CeedoUserApplication DataMicrosoftInternet ExplorerQuick Launch in a separate explorer window. Next, right-click and drag the script to the Quick Launch folder and when you let go of your right mouse button, left-click on the option to create a shortcut in the context menu.
Right-click on the shortcut and select properties. Click on the change icon button and select an icon that looks better than the default .bat icon for the shortcut.
Close the Quick Launch folder and go back to the .bat file. Right-click on it and select properties. Enabe the option in the properties sheet to hid the .bat file. Now the only visible method of running the script will be the shortcut you created in the Quick Launch folder. The icon for the shortcut will appear on your toolbar with the icon you selected for it.
The first time you run the .bat file, you will be prompted for your password, which will appear in plain text as you type it. When you hit the enter key, the "Personal" folder will be created. Running the .bat file again will give you a prompt (in the command prompt) asking you if want to lock the folder. To lock the folder, type in the lettery Y and hit Enter on your keyboard. To exit the command prompt without locking the folder, type "N" and hit Enter.
When the folder is locked, unhiding hidden files in the Folder Properties will not make the Personal folder visible.
Please test this script with inconsequential files to make sure it works for you before storing anything important in the secure folder.
This is not a fantasting method of securing your personal files, but if you ever lose your Ceedo drive, it's something that most people wouldn't think to look for, so in the event that a dishonest person were to find your drive if you lost it, or maybe even steal your drive from you, you should have a pretty good chance your personal files won't be recovered.
I have zipped up the .bat file and made it available for download here (http://sv650sf.com/ceedouser/user_files/security/personal.zip).
I'd like to be able to secure everything so that if I lost the drive, I wouldn't have all my email at easy access, while at the same time being able to sync it for backup purposes easily and probably not with a master password on the drive as a whole (since I'm already setup, although I guess I can backup and copy it all back over). FYI, I'm a novice :p and this is one of the last little things on my wishlist (for now ;))
Thanks for your input.
David
David,
You can edit the script and change the hidden folder name to the same name as your e-mail store. You will have to remember to unlock the folder before opening your e-mail client otherwise your e-mail client will make a new e-mail store folder and configure itself to use it instead of the original folder.
It seems what you want is to protect your entire USB device. Software-wise I believe you would have to use something like TrueCrypt and install your applications within the encrypted volume, but that would require admin rights on any computer to want to use it on (which is mentioned in the thread already).
If not software, then you would have to purchase a hardware based encryption device like Data Traveler Secure or Aegis Bio (also already mentioned in the thread) or Iron Key (discussed in other threads which you can find by using the search function).
If I'm not mistaken, all the applications mentioned above require a password to access the drive once connected. In any case; I think your question has been answered already.
Regards,
There are several programs out there that allow you to protect your Ceedo Drive, I have included some of them that will help you for what you are looking for.
Here are some resources I have come up with:
TrueCrypt
http://www.truecrypt.org/
Description
Creates a virtual encrypted disk within a file and mounts it as a real disk.
Encrypts an entire hard disk partition or a storage device such as USB flash drive.
Encryption is automatic, real-time (on-the-fly) and transparent.
Provides two levels of plausible deniability (http://www.truecrypt.org/docs/?s=plausible-deniability), in case an adversary forces you to reveal the
1) Hidden volume (http://www.truecrypt.org/hiddenvolume.php) (steganography – more information may be found here (http://www.truecrypt.org/docs/?s=hidden-volume)).
2) No TrueCrypt volume can be identified (volumes cannot be distinguished from random data).
Encryption algorithms (http://www.truecrypt.org/docs/?s=encryption-algorithms): AES-256 (http://www.truecrypt.org/docs/?s=aes), Serpent (http://www.truecrypt.org/docs/?s=serpent), and Twofish (http://www.truecrypt.org/docs/?s=twofish). Mode of operation: LRW (http://www.truecrypt.org/docs/?s=modes-of-operation).
Invisible Secrets 4
http://www.invisibesecrets.com
Description
Invisible Secrets 4 not only encrypts your data and files for safe keeping or for secure transfer across the net, it also hides them in places that on the surface appear totally innocent, such as picture or sound files, or web pages. These types of files are a perfect disguise for sensitive information.
PGP (Pretty Good Privacy)
http://www.pgp.com/solutions/homeoffice.html (http://www.pgp.com/solutions/homeoffice.html)
Description
With PGP encryption solutions, the work people do at home can be protected just as well as if they were in an office with dedicated IT professional support. Award-winning PGP products are so easy to use, no one needs to become an IT professional just because they work in a different environment.
There are other programs out there, these are just some suggestions, I am not sure if they work with Ceedo, but I hope one of these links help you.
-Iian
Ceedo Evaluator
Little but very important detail:
TrueCrypt requires admin rights on the workstation in order to work, as it must install a system-level driver for on-the-fly encryption/decryption.
Long story made short, if you plan to use a TrueCrypt protected drive on a locked-down computer, you'll be stuck.
#If you have any other info about this subject , Please add it free.# |
