Category Archives: Dropbox

Cloud Privacy, Cloud Storage, Encrypt Dropbox Folder, Encryption, Security, TrueCrypt

Protect Your Privacy with TrueCrypt – Part 2

Leave a comment

In this post, we’ll describe how to encrypt a small folder using TrueCrypt, a free and very powerful encryption tool. You can put anything you want in this folder, of course, but the point of this exercise is to have something that is extremely safe from prying eyes that will allow you to keep your passwords or online account numbers private. Once you create this folder, you can put text files, documents…basically whatever you want to, as long as the total size is not larger than the folder you create. We’ll explain that later.

1. Download and install Truecrypt. You can install Truecrypt or run it from a folder. You could even keep the Truecrypt folder inside your Dropbox folder in order to make it available on every computer that you access Dropbox with.

2. Run Truecrypt. Here is the window that comes up at the start:

Photo of TrueCrypt menu
Click on the Create Volume button or click on Volumes then Create New Volume.

A volume is something that only Truecrypt can open. As you will notice later on, there is no three letter file designation to the folder/file/volume that you create. No other program will recognize it, not Windows, not Notepad, only Truecrypt.

 

3. 

Menu for TrueCrypt
For the next few screens, you’ll just accept the default settings. Here, choose ‘Create an encrypted file container’ then click Next.

 

4. 

Menu for TrueCrypt 3
Click Next to start creating a Standard TrueCrypt volume.

 

5. 

Menu for TrueCrypt
This menu looks complicated but it’s not. Click on the Select File and the standard Windows dialogue will open up.

 

6. 

Menu for TrueCrypt
You do not actually choose a folder, you are making one. Type in a name, we’ve used Test Folder for TrueCrypt.

Don’t get confused here. You’re not choosing a file or folder, you are really creating a volume somewhere you are on your computer. We chose our Desktop but you’re on your own here. All you do in this menu is simply type in a name, make up anything you want. You can even use a three letter file name to make this Truecrypt volume look like another kind of file. The default program for that type of file, .avi or .mp3 for instance, will NOT be able to open it, remember? Only Truecrypt can open this file.

 

7. 

Photo of TrueCrypt menu
This menu just confirms the file location. Click Next. 

 

8. 

Photo of TrueCrypt menu.
Just click Next here. The default AES algorithm is fine.

 

9. 

Photo of TrueCrypt
You’re on your own here but we chose a 1 MB file, lots of room for our password text file.

 

10. 

Photo of TrueCrypt menu
Choose your password. If you make it less than 20 characters, Truecrypt will give you a nudge. Whatever you do, don’t forget the password you use. You can’t open this volume without it, no matter what you do.

 

11. 

Photo of TrueCrypt menu.
Your password is too short! Don’t worry about this. You’re not protecting state secrets, right? If you can remember a 20 digit password, however, use one.

 

12. 

Photo of TrueCrypt menu
We would normally choose NTFS for the filesytem but our volume is only 1 MB so NTFS isn’t available. Move your mouse over this screen in a random order to create a very strong encryption.

Move your mouse all over this menu for a minute or two then click Format. Truecrypt will then format the volume that you just made, creating, more or less, a separate drive on your computer. That drive is controlled by Truecrypt, nothing else. Windows doesn’t know anything about it, other than it takes up space. It cannot open the volume and will not even suggest a program that might open it.

 

13. 

Photo of TrueCrypt menu.
Success! Click OK and you’re done.

 

14. 

Photo of TrueCrypt menu
Click Exit to end this part of the lesson.

 

That’s it for now. This post is long enough but we’ve accomplished a lot. You now know how to create a locked volume that can be opened only by you. Even if someone gets access to your computer or your cloud folder, they will not be able to see what is inside this folder. Cool huh?

Next time, we’ll show you how to use this volume. Basically, you just mount it using your password, open it then drop files into it and then dismount it. Once you dismount it, it is locked again.

Thanks for reading!

Check out our Facebook page. Like and follow our updates. Here’s the link:  https://www.facebook.com/ComputersMadeSimple

 

 

 

Dropbox, Encrypt Dropbox Folder

Encrypt your Dropbox folder with TrueCrypt

Leave a comment

In our last post, we encrypted a text document. Here’s that article in case you missed it: Using Notepad ++ to Encrypt a Text File  This post is a continuation of that theme, keeping your cloud files safe from prying eyes. Whose prying eyes? The employees and management of the various cloud companies, that’s who. Now that Microsoft has banned photos containing nudity in their SkyDrive folders, you can be certain that employees/managers/bots scan your files for offending data. Hell, your government is probably scanning those folders as well.

TrueCrypt is free. You can get it here: TrueCrypt  . Once you download TrueCrypt, install it. While it is a very powerful program, Truecrypt is mostly based on passwords. If you lose your various TrueCrypt passwords, you’re totally out of luck so anything you do with this program must be done using a password that you won’t ever forget. You’ve been warned.

The concept of this whole thing is to make an encrypted folder on your computer which will become your Dropbox folder. Since that folder is synced with your online Dropbox folder, it is automatically encrypted.  TIME OUT! In the middle of writing this post we discovered that the guide we were using simply doesn’t work. We managed to encrypt the Dropbox folder on one of our computers but not the online Dropbox folder. We’re back to square one here but we’ll update this post a.s.a.p. Yes, this is a short post but it’s been three days since our last one and we didn’t want anyone to think we’re sleeping on the job. We’re not. Things get in the way every now and then!

We’re back! 

OK, we figured it out. Although the system we started to describe is in different places all over the Internet, it does not work. What follows is the only way to secure your Dropbox contents from prying eyes. You can use the same technique on other cloud services, SkyDrive for instance, and rest assured that no one but you can access your material there…provided you remember the password.

Before we get into the how-to section of this post, we want to explain some principles about what we’re going to do here. You have to know how Dropbox works before you can understand this whole thing.

The Basics

1. There are as many Dropbox folders as there are computers that access the same account…plus one. There is one folder on the Dropbox site itself plus the same folder, more or less, on every computer that you use for the same Dropbox account.

2. If you put a file, let’s say a photo or a video, into your Dropbox folder on one computer, that computer uploads the file to your online Dropbox folder.

3. When you turn on another computer that has access to the same Dropbox account, the file that was just uploaded to the online Dropbox folder is downloaded to the current computer’s Dropbox folder. If you change a fileThis is what syncing is all about, right?

The Problem: 

1. When you change a file, Windows notes the change by telling us that the file was modified at such and such a time/date. If you modify a file, Dropbox notices this and updates that file all by itself. The next time you start your other computer(s), Dropbox sees that the version of a file isn’t the same as the one that it has in its online folder. As soon as it sees the discrepancy, Dropbox downloads the newer version of the file to whatever computer you are currently using.

2. When you are using Truecrypt, any folder you open is hidden, more or less, from Windows. In effect, that file is open only in Truecrypt, as if it was another operating system. You open Truecrypt then open the encrypted folder, add or subtract data from it and then close it before you close Truecrypt. When Truecrypt closes the folder (called dismounting), it does not update Windows on what changes have been made. As far as Windows knows, nothing has changed.

3. Do you see the problem? If Windows doesn’t tell Dropbox that the folder has changed, Dropbox doesn’t know to sync that file with either its own online version of that folder or the other versions of the same folder on any other computer that you use. Ah, there’s the rub.

The Solution: 

1. There’s only one step to this solution. Instead of letting Dropbox sync your encrypted folder by itself, you have to send the folder to Dropbox each time you add or subtract anything from it. Basically, you copy and paste the changed folder into your current computer’s Dropbox folder. Only then will Dropbox feed the newly changed folder up to your online folder. In theory, this is how it should work. While you’re mulling all of this over, we’re trying to check that this is exactly what happens. Next post, we’ll let you know if our theory worked. Wish us luck!

Thanks for reading!

Dropbox

How Dropbox Can Save Your Bacon

1 Comment

Yesterday, we locked ourselves out of one of our WordPress websites. Even though we write about tech things, we sometimes screw up. Luckily we were able to get back into the site using a password file that we had backed up on Dropbox. Here’s how it went down:

1. We keep a list of passwords in a simple text file on the main office computer and a duplicate file in our Dropbox folder online.

2. Somehow, probably when someone started to type something but didn’t know they were in the password file, one of the passwords got erased.

3. We had the admin password but we’d changed the admin user account’s settings so even though we were able to log-in as admin, we couldn’t do anything. If you have a WordPress site, this is one of the first things you should do. Hackers know that most WordPress users leave the log-in name as ‘admin’ which means that they are already half-way there when it comes to breaking into your site.

4. Since Dropbox syncs your computer’s Dropbox folder with its own online version, both text files were corrupt.

5. We logged on at Dropbox.com, found the file, then looked for the previous versions of that same file, an older version that hadn’t been corrupted. Dropbox stores older versions of files for these kinds of accidents.

6. After we found the file, simply right clicking it brought up this menu:

Photo of Dropbox menu
Right click and choose ‘Previous Version”

7. The previous version of the file had the correct password in it. After we logged into the site, we copied and pasted the missing password back into the original file on our computer. Dropbox, of course, immediately synced the two folders, its own and the one on our computer. We left the previous version as it was, just in case we need it again.

Now, you’re probably thinking, “Why didn’t they just use the ‘forgot password’ option on WordPress?” That makes perfect sense if we used the same email address for all of our sites but we don’t. Checking each of a dozen websites for the WordPress link would have taken much longer. The Dropbox option was faster. We have, however, made a list of what email address is used for each site. That file is on Dropbox and the main computer, of course. Yes, we should have thought of that before but we’re not real geniuses here, we’re just reasonably smart.

Dropbox can really help in this kind of situation. We hope you take our advice and use it. Check out the site, the installation process here:   Dropbox

Thanks for reading!