Security
Secure partitions/files under Windows
Using
TrueCrypt one can create encrypted partitions or files under Windows.
Mounting a crypted File
For a crypted File on a network Device you need "runcmdas" then do:
- runcmdas localsystem
- net use X: \\server\path\to
Then you can access the crypt File like on a local hard disk and mount it with TrueCrypt.
Mounting hidden Files
With TrueCrypt you can mount a hidden File if you specify the password for the hidden volume.
A Volume can be mounted like this:
- truecrypt [/v volume] [/d [letter]] [/l letter] [/m {rm|ro}] [/e] [/b]
[/p password] [/h {y|n}] [/q] [/c {y|n}] [/w] [/a [devices]] [/f]
Command Line Usage
- /help or /?
- Displays command line help.
- /volume or /v
- File and path name of a TrueCrypt volume. To mount a hard disk partition,
use, for example, /v \Device\Harddisk1\Partition3 (to determine
the path to a partition, run TrueCrypt and click Select Device).
- /letter or /l
- Driver letter to mount the volume as. When /l is omitted and when /a is used, the first free drive letter is used.
- /explore or /e
- Opens an Explorer window after a volume has been mounted.
- /beep or /b
- Beeps after a volume has been successfully mounted or dismounted.
- /auto or /a
- If no parameter is specified, automatically mounts the volume. If devices is specified as the parameter, auto-mounts all currently accessible device/partition-hosted TrueCrypt volumes.
- /dismount or /d
- Dismounts the given volume (specified by its drive letter) or when no volume is specified, dismounts all currently mounted TrueCrypt volumes.
- /force or /f
- Forces dismount (if the volume to be dismounted contains files being used by the system or an application) and forces mounting in shared mode (i.e., without exclusive access).
- /cache or /c
- y: enables, n: disables the password cache. Note that turning the password cache off will not clear it.
- /history or /h
- y: enables, n: disables the history.
- /wipecache or /w
- Wipes any passwords cached in the driver memory.
- /password or /p
- The volume password. If the password contains spaces, it must be enclosed in quotation marks (e.g., /p .My Password.). Warning: This method of entering a volume password is not secure, particularly when you save the password in an unecrypted batch file, or when an unencrypted command prompt history log is being saved to disk. Consider using /q /a instead.
- /quiet or /q
- Quiet mode. When used along with /auto and if no cached password is correct, the password prompt appears (the main TrueCrypt window is not displayed). This could increase the level of privacy in multi-user environments. Program settings are not loaded/saved from/to Windows registry file when quiet mode is enabled.
- /mountoption or /m
- ro: mount as read-only; rm: mount as removable medium
