how does file encrypt work?
For you maybe a strange question, but I don't understand... I want to encrypt a folder so that it can only be opened using a password. I use dolphin (in KDE) right click on a folder and chose actions->pack and encrypt folder ("Ordner packen und verschlüsseln) In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok. A "foldername.tar.pgp" is created. It is encrypted. Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password. So what's the use of this encryption when it can be decrypted without the password??? How do I encrypt a folder so that it actually can only be decrypted using a password? Thanks for clarification! Daniel -- Daniel Bauer photographer Basel Málaga Twitter: @Marsfotografo (often explicit nudes) https://www.patreon.com/danielbauer https://www.daniel-bauer.com (nudes)
* Daniel Bauer <linux@daniel-bauer.com> [12-14-23 08:26]:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
I have little knowledge of encryption but. You encrypted "for others", so why would *you* need a password. *you* are logged into the session so should have direct access. -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
On Thu, 14 Dec 2023 09:18:50 -0500 Patrick Shanahan <paka@opensuse.org> wrote:
* Daniel Bauer <linux@daniel-bauer.com> [12-14-23 08:26]:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
I have little knowledge of encryption but. You encrypted "for others", so why would *you* need a password. *you* are logged into the session so should have direct access.
Me neither, but Daniel wrote 'I deselect "encrypt for others"', which I gather you didn't notice.
Am 14.12.23 um 16:55 schrieb Dave Howorth:
On Thu, 14 Dec 2023 09:18:50 -0500 Patrick Shanahan <paka@opensuse.org> wrote:
* Daniel Bauer <linux@daniel-bauer.com> [12-14-23 08:26]:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
I have little knowledge of encryption but. You encrypted "for others", so why would *you* need a password. *you* are logged into the session so should have direct access.
Me neither, but Daniel wrote 'I deselect "encrypt for others"', which I gather you didn't notice.
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
Maybe this function ist not correct working? i have also no good knowledge, but the .pgp at the file will suggest (at least for me) that its with the pgp/gpg key crypted. as far as you have your private+public key on your computer and kde finds it, it will use this keypair for crypt and decrypt. simoN -- www.becherer.de
On 2023-12-14 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
Thanks for clarification!
I think I can clarify your questions, but making educated guesses: I have never used this KDE/Doplphin functionality :-) It is not actually encrypting a directory or folder in the filesystem. What is doing is archiving into a single tar archive and encrypting it with PGP using your own public PGP key, and then the original files are deleted. Thus it shares properties of common PGP. I assume the files are not compressed, but they might (using then the name foldername.tar.gz.pgp It can be done using the public keys of other people, so that those people will also be able to open the archive. When you click on the archive, it is opened using your _private_ pgp key this time, using a password which KDE keeps for you in RAM for your confort of use. Most Linux desktops have this feature, it is called "pgp agent" (even the text console has this). They can also keep the password for remote ssh sessions, etc. I thought it might be Kleopatra, but it is not. It might actually be "gpg-agent", but more probably it is KWallet. You should be able to tell it to forget the password immediately; it is probably set to remember for the current session. I see mentions of "pinentry-qt4" in my google search, so you will have to hunt a bit to find which is the actual agent. Try "ps afxu | grep -i agent" in a terminal as yourself. If you ticked "encrypt for others" they have to use their own private pgp keys. This is a feature of PGP, anyone can have the public pgp key of anyone, thats what the name "public" implies. The private/public pgp pair are created simultaneously and are complementary. Notice that if you put the "foldername.tar.pgp" into an usb stick, and the password into a paper, that will not be enough to open the thing. You also need your private PGP key, which you can not put in the same usb stick. The password is not used for encryption, but for opening the key; the key is used for encryption or decryption (different keys). HTH -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
On 14.12.2023 20:33, Carlos E. R. wrote:
On 2023-12-14 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
Thanks for clarification!
I think I can clarify your questions, but making educated guesses: I have never used this KDE/Doplphin functionality :-)
It is not actually encrypting a directory or folder in the filesystem. What is doing is archiving into a single tar archive and encrypting it with PGP using your own public PGP key, and then the original files are deleted.
Correct. The action is actually called "Archive & Encrypt", not "Pack & Encrypt". Which is why we always ask for English messages - to avoid playing Chinese whispers. When you do it, Dolphin calls Kleopatra which offers three possibilities - "Encrypt for me" (using own public key), "Encrypt for others" (you need to enter id for the other public key(s)) and "Encrypt with password". You may select any combination.
Thus it shares properties of common PGP.
I assume the files are not compressed, but they might (using then the name foldername.tar.gz.pgp
It can be done using the public keys of other people, so that those people will also be able to open the archive.
Correct. And you can actually encrypt for multiple people using different keys at the same time.
When you click on the archive, it is opened using your _private_ pgp key this time, using a password which KDE keeps for you in RAM for your confort of use. Most Linux desktops have this feature, it is called "pgp agent" (even the text console has this). They can also keep the password for remote ssh sessions, etc. I thought it might be Kleopatra, but it is not. It might actually be "gpg-agent", but more probably it is KWallet. You should be able to tell it to forget the password immediately; it is probably set to remember for the current session. I see mentions of "pinentry-qt4" in my google search, so you will have to hunt a bit to find which is the actual agent.
Try "ps afxu | grep -i agent" in a terminal as yourself.
If you ticked "encrypt for others" they have to use their own private pgp keys.
This is a feature of PGP, anyone can have the public pgp key of anyone, thats what the name "public" implies.
The private/public pgp pair are created simultaneously and are complementary.
Notice that if you put the "foldername.tar.pgp" into an usb stick, and the password into a paper, that will not be enough to open the thing. You also need your private PGP key, which you can not put in the same usb stick.
The password is not used for encryption, but for opening the key; the key is used for encryption or decryption (different keys).
That is incorrect. Dolphin calls Kleopatra which can encrypt using public key or using symmetrical encryption (which corresponds to the "gpg --symmetrical"). It can also do both at the same time. Also, gpg caches symmetrical key (I assume, in agent) so it can decrypt without requesting key again. So both can be true here - the file may have been encrypted by both public key and password, and both private key and password may have been cached. Unfortunately, as usual OP did not bother to mention what he was using. I cannot currently reproduce it on Tumbleweed - invocation of gpg2 fails because terminal name is not defined, so no file is created (although Kleopatra happily reports success). But I am as far as seeing options that are offered.
W dniu 14.12.2023 o 19:31, Andrei Borzenkov pisze:
Also, gpg caches symmetrical key (I assume, in agent) so it can decrypt without requesting key again.
Yes, I had some trouble with this cache once, so now I have "no-symkey-cache" in .gnupg/gpg.conf https://www.gnupg.org/documentation/manuals/gnupg/GPG-Esoteric-Options.html
On 14/12/2023 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
Thanks for clarification!
Daniel
You might be more interested in using Plasma Vaults. Find it in your system tray (overflow menu probably). This will make a folder encrypted with a password, and also render it hidden, accessible only from Vaults. gumb
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password???
How do I encrypt a folder so that it actually can only be decrypted using a password?
Thanks for clarification!
Daniel
You might be more interested in using Plasma Vaults. Find it in your system tray (overflow menu probably). This will make a folder encrypted with a password, and also render it hidden, accessible only from Vaults.
gumb
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others. I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar. -- Daniel Bauer photographer Basel Málaga Twitter: @Marsfotografo (often explicit nudes) https://www.patreon.com/danielbauer https://www.daniel-bauer.com (nudes)
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
Then PGP encryption with public/private key pairs, using the option you saw "encrypt for others". Here there might be two options, the true PGP, or the GnuPG version, which is what Linux has. I don't know if the true PGP is actually dead. You would have to try decoding on other machines, to see if it works. Difficulty is that both sides have to be familiar with PGP encryption. Or you have to find out how to guide them when using their own computer systems. They have to create in advance their own PGP key pairs, and share with you their public keys. -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
Am 15.12.23 um 16:53 schrieb Carlos E. R.:
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
Then PGP encryption with public/private key pairs, using the option you saw "encrypt for others".
Here there might be two options, the true PGP, or the GnuPG version, which is what Linux has. I don't know if the true PGP is actually dead.
You would have to try decoding on other machines, to see if it works.
Difficulty is that both sides have to be familiar with PGP encryption. Or you have to find out how to guide them when using their own computer systems.
This is the problem. Most people (me included) have no or not much idea about encryption. I cannot ask a client that she learns how to create and use keys, if (as usual) she's on a non-linux system I couldn't even explain how... Fun fact: while trying "for others" the dialog suggested you, as from so email I have your public key in my key-ring :-) -- Daniel Bauer photographer Basel Málaga Twitter: @Marsfotografo (often explicit nudes) https://www.patreon.com/danielbauer https://www.daniel-bauer.com (nudes)
On 2023-12-15 19:16, Daniel Bauer wrote:
Am 15.12.23 um 16:53 schrieb Carlos E. R.:
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
For you maybe a strange question, but I don't understand...
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
Then PGP encryption with public/private key pairs, using the option you saw "encrypt for others".
Here there might be two options, the true PGP, or the GnuPG version, which is what Linux has. I don't know if the true PGP is actually dead.
You would have to try decoding on other machines, to see if it works.
Difficulty is that both sides have to be familiar with PGP encryption. Or you have to find out how to guide them when using their own computer systems.
This is the problem. Most people (me included) have no or not much idea about encryption. I cannot ask a client that she learns how to create and use keys, if (as usual) she's on a non-linux system I couldn't even explain how...
You could find out ;-) It is possible that it is even easier to do on Windows. Then, it is possibly the most secure system you can find. You could have a file out there in a public place, and a number of people, say 5, could open it, each one with their own different key, whereas with other systems they would all have the same password, and they could share it with new people.
Fun fact: while trying "for others" the dialog suggested you, as from so email I have your public key in my key-ring :-)
That is so :-) -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
On Fri, 15 Dec 2023 16:25:22 +0100, Daniel Bauer <linux@daniel-bauer.com> wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password??? [...]
You might be more interested in using Plasma Vaults. Find it in your system tray (overflow menu probably). This will make a folder encrypted with a password, and also render it hidden, accessible only from Vaults.
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
Maybe you already have a working solution. Is it really a problem that *you* don't need a password to decrypt it? As has been mentioned, that is because GPG caches the (symmetric) password for the user who does the encryption, you. Is it OK if only other people need the password to decrypt it? At this point you need to check whether others really do need the password to decrypt it. See 'man gpg2' or 'info gnupg'. -- Robert Webb
Am 15.12.23 um 18:01 schrieb Robert Webb via openSUSE Users:
On Fri, 15 Dec 2023 16:25:22 +0100, Daniel Bauer <linux@daniel-bauer.com> wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
I want to encrypt a folder so that it can only be opened using a password.
I use dolphin (in KDE) right click on a folder and chose
actions->pack and encrypt folder ("Ordner packen und verschlüsseln)
In the following dialog I deselect "encrypt for others" and select "encrypt with Password", enter the password, click ok.
A "foldername.tar.pgp" is created. It is encrypted.
Then I right-click that file, select actions->decrypt and the decrypted folder is created immediately without asking me the password.
So what's the use of this encryption when it can be decrypted without the password??? [...]
You might be more interested in using Plasma Vaults. Find it in your system tray (overflow menu probably). This will make a folder encrypted with a password, and also render it hidden, accessible only from Vaults.
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
Maybe you already have a working solution. Is it really a problem that *you* don't need a password to decrypt it? As has been mentioned, that is because GPG caches the (symmetric) password for the user who does the encryption, you. Is it OK if only other people need the password to decrypt it? At this point you need to check whether others really do need the password to decrypt it.
Well, there are two different cases: - the one here important, where I want to send something encrypted to somebody who (also) has no idea about encryption, but can enter a password... - the other, where I want a file to stay encrypted even when I am logged in and connected to the web (my disks are encrypted, but not when working), so that even when somebody manages to hack in or has direct access to my running computer s/he cannot read that file. the second case I solved for me with a LUKS encrypted image file. -- Daniel Bauer photographer Basel Málaga Twitter: @Marsfotografo (often explicit nudes) https://www.patreon.com/danielbauer https://www.daniel-bauer.com (nudes)
On Friday, December 15, 2023 at 07:25:37 AM PST, Daniel Bauer <linux@daniel-bauer.com> wrote:
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others. I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
I wonder if Veracrypt is the answer you are looking for.You create a container (file) that you would mount as a volume/drive using a password (which is always required)Then you copy files or directories into the mounted drive. Once you unmount the drive you can place that container anywhere. Anybody you wish can download the file and mount it using the password you send them.It's cross-platform. Payam F.
Am 15.12.23 um 18:51 schrieb Payam Firouztala via openSUSE Users:
On Friday, December 15, 2023 at 07:25:37 AM PST, Daniel Bauer <linux@daniel-bauer.com> wrote:
thanks for the hint. Anyway as much as I see it, Plasma Vault would be linked to my KDE, but I search for a solution to encrypt files or folders in a way that I can put them anywhere and share with others.
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
I wonder if Veracrypt is the answer you are looking for. You create a container (file) that you would mount as a volume/drive using a password (which is always required) Then you copy files or directories into the mounted drive. Once you unmount the drive you can place that container anywhere. Anybody you wish can download the file and mount it using the password you send them. It's cross-platform.
Thanks. It looks interesting, as much as I understand it's kind of the same approach as I use with my LUKS-encrypted image-files for my own purposes. The problem I see here is that the receiver must install Veracrypt to be able to mount a container (at least s/he can, in contrary to LUKS on Win, as far as I know). But I bookmarked it, in case I find no easier solution. -- -- Daniel Bauer photographer Basel Málaga Twitter: @Marsfotografo (often explicit nudes) https://www.patreon.com/danielbauer https://www.daniel-bauer.com (nudes)
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
There are easier methods. You could pack the file(s) with (pk)zip, which allows adding a password. There are tools in all operating systems, I think, to open them. Caveat is, I don't know how strong is that encryption or protection. -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
On 2023-12-15 19:57, Carlos E. R. wrote:
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
There are easier methods. You could pack the file(s) with (pk)zip, which allows adding a password. There are tools in all operating systems, I think, to open them.
Caveat is, I don't know how strong is that encryption or protection.
If you want your data to be unreadable by most people, don't use zip encryption. It is considered weak[1][2]. [1] man zipcloak, line 46 [2] https://en.wikipedia.org/wiki/ZIP_(file_format)#Encryption -- /bengan
On 2023-12-16 07:44, Bengt Gördén wrote:
On 2023-12-15 19:57, Carlos E. R. wrote:
On 2023-12-15 16:25, Daniel Bauer wrote:
Am 14.12.23 um 20:52 schrieb gumb via openSUSE Users:
On 14/12/2023 14:25, Daniel Bauer wrote:
I am looking for something to encrypt files so that somebody can decrypt them even on a Mac or Win-PC. With this I could for example deliver private client photos via dropbox or similar.
There are easier methods. You could pack the file(s) with (pk)zip, which allows adding a password. There are tools in all operating systems, I think, to open them.
Caveat is, I don't know how strong is that encryption or protection.
If you want your data to be unreadable by most people, don't use zip encryption. It is considered weak[1][2].
[1] man zipcloak, line 46 [2] https://en.wikipedia.org/wiki/ZIP_(file_format)#Encryption
Hum. Is there some other archiver with proper encryption? -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
On 2023-12-16 12:49, Carlos E. R. wrote:
Is there some other archiver with proper encryption?
There is probably some cli command that can do that but the default zip with -e only encrypts with original (weak) encryption. I haven't cared much about encryption with zip. Just been part of cracking it for our own purposes. If you use an archiver like "ark", you can choose AES256 for your zip archive. The problem I think Daniel is facing is that his customers should not have to install any cumbersome unzipper to get things rolling. But you can extend the service menu in dolphin with quite a few things. Among them is one with ark but I'm not sure if it can be change encryption. As a short test. Two zip files. One made with ark and AES256 and the other with zip -e. $ file *.zip 1.zip: Zip archive data, at least v5.1 to extract, compression method=AES Encrypted $ 2.zip: Zip archive data, at least v2.0 to extract, compression method=deflate -- /bengan
On Sat, 16 Dec 2023 14:16:54 +0100, Bengt Gördén <bengan@bag.org> wrote:
On 2023-12-16 12:49, Carlos E. R. wrote:
Is there some other archiver with proper encryption?
There is probably some cli command that can do that but the default zip with -e only encrypts with original (weak) encryption. I haven't cared much about encryption with zip. Just been part of cracking it for our own purposes.
If you use an archiver like "ark", you can choose AES256 for your zip archive.
The problem I think Daniel is facing is that his customers should not have to install any cumbersome unzipper to get things rolling. But you can extend the service menu in dolphin with quite a few things. Among them is one with ark but I'm not sure if it can be change encryption.
As a short test. Two zip files. One made with ark and AES256 and the other with zip -e.
$ file *.zip 1.zip: Zip archive data, at least v5.1 to extract, compression method=AES Encrypted $ 2.zip: Zip archive data, at least v2.0 to extract, compression method=deflate
peazip graphical file archiver [1]: - for MS Windows, ReactOS, Linux, MacOS, and BSD - encryption with AES 256-bit cipher in 7z and ZIP archive formats - invokable from command line [1] https://peazip.github.io/ -- Robert Webb
On 12/14/23 07:25, Daniel Bauer wrote:
How do I encrypt a folder so that it actually can only be decrypted using a password?
Thanks for clarification!
Is gpg_agent caching the password you just entered and feeding it back to decrypt when you click on the file? -- David C. Rankin, J.D.,P.E.
participants (12)
-
Adam Mizerski -
Andrei Borzenkov -
Bengt Gördén -
Carlos E. R. -
Daniel Bauer -
Dave Howorth -
David C. Rankin -
gumb -
Patrick Shanahan -
Payam Firouztala -
Robert Webb -
Simon Becherer