Johan Empa @JohanEmpa

0 posts0 participants0 posts today

**Khurram Wadee** @mkwadee@mastodon.org.uk · Apr 7

Khurram Wadee @mkwadee@mastodon.org.uk

My experience with #FlashDrives recently has been mixed. I have no problem in encrypting them with #LUKS, using #cryptsetup or with formatting a partition with #Btrfs, for instance, using #gparted and doing other tinkering with #Gnome #disks. But the problem has been with the actual drives themselves. The cheaper ones seem to have quite a few bad sectors, etc. and so they’re not really reliable for medium term storage.

1/2

#Hardware #StorageDevices #Unix

Continued thread

**Khurram Wadee** @mkwadee@mastodon.org.uk · Mar 5

Mar 5

Khurram Wadee @mkwadee@mastodon.org.uk

So today I tired #mkfs.btrfs and this works. I was using #gparted, which can’t create #encrypted file systems and so I created a blank (cleared) one, used #cryptsetup to create the #encryption on the device, and then created the brtrfs file system.

#GNU #FreeSoftware

**musicmatze** @musicmatze@social.linux.pizza · Nov 16, 2024

Nov 16, 2024

musicmatze @musicmatze@social.linux.pizza

Does someone have a working #nixos setup where they decrypt their drive via #cryptsetup that they access remotely via #tailscale?

That's what I am building for my new working machine.

Also WakeOnLan (via local network though).

#followerpower

**musicmatze** @musicmatze@social.linux.pizza · Nov 16, 2024

Nov 16, 2024

musicmatze @musicmatze@social.linux.pizza

Does someone have a working #nixos setup where they decrypt their drive via #cryptsetup that they access remotely via #tailscale?

That's what I am building for my new working machine.

Also WakeOnLan (via local network though).

#followerpower

**scy** @scy@chaos.social · Sep 25, 2024

Sep 25, 2024

scy @scy@chaos.social

TIL: If you want to `cryptsetup open` a BitLocker encrypted drive using the recovery key (8 blocks of 6 digits each), make sure to enter it _with_ the dashes between each block of digits, else it won't be recognized.

#Linux #Windows #BitLocker

**Milan Broz** @asalor@social.kernel.org · Jul 30, 2024

Jul 30, 2024

Milan Broz @asalor@social.kernel.org

Cryptsetup 2.7.4 stable version released
https://gitlab.com/cryptsetup/cryptsetup#download
It contains fixes for concurrent activation of devices and several fixes for issues detected by static analysis.

Release notes https://kernel.org/pub/linux/utils/cryptsetup/v2.7/v2.7.4-ReleaseNotes

#cryptsetup

GitLabcryptsetup / cryptsetup · GitLabCryptsetup and LUKS - open-source disk encryption

#cryptsetup

**Lucas Werkmeister** @LucasWerkmeister@wikis.world · Jul 26, 2024

Jul 26, 2024

Lucas Werkmeister @LucasWerkmeister@wikis.world

hey neat, Linux 6.10 improved disk encryption performance on my system by ~42% https://gist.github.com/lucaswerkmeister/965d312193362ccfea6378006ce8cb81

Gistno more CONFIG_CRYPTO_STATS. society has progressed past the need for CONFIG_CRYPTO_STATSno more CONFIG_CRYPTO_STATS. society has progressed past the need for CONFIG_CRYPTO_STATS - 00-README.md

#Linux #cryptsetup

**rtn** @rtn@chaos.social · Jul 15, 2024

Jul 15, 2024

rtn @rtn@chaos.social

Quick guide on encrypting an external drive. Assuming the drive is at /dev/sda with a /dev/sda1 partition

Set up encrypted volume (-y for verifying the password)
# cryptsetup luksFormat -y -v /dev/sda1

Unlock the encrypted volume and create a mapping to /dev/mapper/DUDE
# cryptsetup luksOpen /dev/sda1 DUDE

Create a file system
# mkfs.ext4 /dev/mapper/DUDE

Mount the partition
# mkdir /mnt/DUDE
# mount /dev/mapper/DUDE /mnt/DUDE

#cryptsetup #FDE

**Agent Shredder** @AgentShredder@chaos.social · Jul 2, 2024 *

Jul 2, 2024 *

Agent Shredder @AgentShredder@chaos.social

Mit Agent Shredder kannst du unterwegs verschlüsselte Backups von SD Karten erstellen und diese unwiederbringlich löschen.

tragbar
offline
off grid
LUKS
passt in die Hosentasche

@AgentShredder nutzt Open Source Software nach aktuellem Stand der Technik.

#encrypt #crypto #security

**Milan Broz** @asalor@social.kernel.org · Jun 17, 2024

Jun 17, 2024

Milan Broz @asalor@social.kernel.org

Cryptsetup 2.7.3 stable version released
https://gitlab.com/cryptsetup/cryptsetup#download

It contains detection for broken OPAL firmware reporting wrong encryption logical sector size and other fixes.

Release notes https://kernel.org/pub/linux/utils/cryptsetup/v2.7/v2.7.3-ReleaseNotes

#cryptsetup

GitLabcryptsetup / cryptsetup · GitLabCryptsetup and LUKS - open-source disk encryption

#cryptsetup

**Milan Broz** @asalor@social.kernel.org · Apr 9, 2024

Apr 9, 2024

Milan Broz @asalor@social.kernel.org

Cryptsetup 2.7.2 stable version released, https://gitlab.com/cryptsetup/cryptsetup#download

It contains several fixes to OPAL HW encryption support.

Release notes https://kernel.org/pub/linux/utils/cryptsetup/v2.7/v2.7.2-ReleaseNotes

#cryptsetup

GitLabcryptsetup / cryptsetup · GitLabCryptsetup and LUKS - open-source disk encryption

#cryptsetup

**ricardo** @governa@fosstodon.org · Jan 28, 2024

Jan 28, 2024

ricardo @governa@fosstodon.org

#Cryptsetup 2.7.0 Unveils Advanced #OPAL Hardware Encryption Support

https://linuxiac.com/cryptsetup-2-7-0-unveils-advanced-opal-hardware-encryption-support/

Linuxiac · Jan 25, 2024Cryptsetup 2.7.0 Unveils Advanced OPAL Hardware Encryption SupportCryptsetup's new update brings hardware encryption, merging software and OPAL layers for more robust protection with trust considerations.

Replied in thread

**Julio Alberto Lascano** @drcalambre@mastodon.social · Jan 27, 2024 *

Jan 27, 2024 *

Julio Alberto Lascano @drcalambre@mastodon.social

@El_Pirrata

sudo apt-get install cryptsetup

Una vez instalado cryptsetup, puedes utilizar herramientas como cryptsetup luksOpen para abrir particiones cifradas y montarlas en tu sistema. Recuerda que debes tener permisos adecuados y las claves de cifrado necesarias para acceder a las particiones cifradas.

#antiX #cryptsetup

https://wiki.archlinux.org/title/Dm-crypt_(Espa%C3%B1ol)/Device_encryption_(Espa%C3%B1ol)

wiki.archlinux.orgdm-crypt (Español)/Device encryption (Español) - ArchWiki

**OSiUX** @osiux@rebel.ar · Jun 6, 2023

Jun 6, 2023

OSiUX @osiux@rebel.ar

Cómo formatear y cifrar un disco externo usb con LUKS usando el rol de Ansible gcoop-libre.luks

#Ansible #AnsibleRole #Backup #Crypt #CryptSetup #Disk #LUKS #LuksFormat #Pass #PasswordStore #Privacy #Restore #USB

https://osiux.com/2021-01-25-ansible-luks-format-external-usb-disk.html

**Axel | R.I.P Natenom** @xtaran@chaos.social · May 14, 2023 *

May 14, 2023 *

Axel | R.I.P Natenom @xtaran@chaos.social

@campuscodi: A few notes and thoughts on CVE-2023-2283 in #libssh:

* libssh (libssh-4 in Debian and derivatives) ≠ libssh2 (libssh2-1 in Debian and derivatives)

* Obviously only servers using libssh to let users log in should be affected by any authentication bypass. Most libssh reverse dependencies though seem to be client-side applications.

The only potential libssh server-side reverse dependencies I found so far are:

* #cryptsetup-ssh
* #tmate-ssh-server
* maybe #cockpit-bridge

**Ben Zucker** @benzucker@maly.io · Apr 29, 2023

Apr 29, 2023

Ben Zucker @benzucker@maly.io

#cryptsetup #benchmark results on #orangepi5 running #armbian with bsp kernel. Maybe somebody's interested.

https://p.na4.eu/?0909d52216fa4695#DjuXLDN5hMTfxX1Mw7yzdcEb7VBWbkQgY6rETs5X11zS

PrivateBinPrivateBinVisit this link to see the note. Giving the URL to anyone allows them to access the note, too.

**Keywan Tonekaboni** @ktn@social.heise.de · Apr 27, 2023

Apr 27, 2023

Keywan Tonekaboni @ktn@social.heise.de

LUKS: Alte verschlüsselte Container unsicher? Ein Ratgeber für Updates

Angeblich konnte die französische Polizei einen LUKS-Container knacken. Kein Grund zur Panik, aber ein Anlass, Passwörter und LUKS-Parameter zu hinterfragen.

https://www.heise.de/news/Alte-LUKS-Container-unsicher-Ein-kleiner-Update-Ratgeber-8981054.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege

heise onlineLUKS: Alte verschlüsselte Container unsicher? Ein Ratgeber für UpdatesBy Sylvester Tremmel

#Argon #LUKS #Linux