Thursday, November 20. 2008
TrueCrypt on Macbook Windows XP
Comments
Display comments as
(Linear | Threaded)
Hi, thanks alot for this information, no one else has answered it so far! I just have a couple of questions:
1.how do i restore mac OS back to an empty partition?
2.Once this is all done, am i able to use bootcamp? because i need to be able to boot either OS,and if so, how does it all work? i.e does the mac prompt me for the truecrypt password at boot, then load the bootcamp OS selection screen afterwards?
1.how do i restore mac OS back to an empty partition?
2.Once this is all done, am i able to use bootcamp? because i need to be able to boot either OS,and if so, how does it all work? i.e does the mac prompt me for the truecrypt password at boot, then load the bootcamp OS selection screen afterwards?
If you have a working Mac OS - e.g. on an external drive - you can use Carbon Copy Cloner (www.bombich.com) or other tools like SuperDuper to restore Mac OS on any empty partition.
And you don't need no bootcamp anymore. In fact Bootcamp is preventing Truecrypt from working because Bootcamp creates the Windows partition as the last one on the disk while Truecrypt expects it the first one.
Before I did all the magic I (inadvertedly for this) had ReFit (refit.sourceforge.net) installed on the Mac, which acts as an additional boot menu. Hence I do not know for sure whether it also works without ReFit - with the OpenFirmware boot menu alone.
And you don't need no bootcamp anymore. In fact Bootcamp is preventing Truecrypt from working because Bootcamp creates the Windows partition as the last one on the disk while Truecrypt expects it the first one.
Before I did all the magic I (inadvertedly for this) had ReFit (refit.sourceforge.net) installed on the Mac, which acts as an additional boot menu. Hence I do not know for sure whether it also works without ReFit - with the OpenFirmware boot menu alone.
Great! this is exactly what I was looking for.
Question though... is it possible to somehow do full disk encryption of the mac partition also?
Or I guess is FileVault good enough? Does OSX write anything containing data - like hibernate or temporary files - outside of the user folder?
Question though... is it possible to somehow do full disk encryption of the mac partition also?
Or I guess is FileVault good enough? Does OSX write anything containing data - like hibernate or temporary files - outside of the user folder?
Yes, the FileVault only encrypts the user's folder.
But you can at least have the OS encrypt the swap file. Go to "Security" in Preferences and activate "Use secure virtual memory".
Unfortunately temporary files in /tmp and elsewhere still seems not to be encrypted.
Some details and issues regarding FileVault can be read here:
http://en.wikipedia.org/wiki/FileVault
There's some commercial solutions for full disk encryption on Mac OS X, though I haven't used any of them:
http://www.checkpoint.com/press/2008/fdemac052808.html
http://www.pgp.com/products/wholediskencryption/
But you can at least have the OS encrypt the swap file. Go to "Security" in Preferences and activate "Use secure virtual memory".
Unfortunately temporary files in /tmp and elsewhere still seems not to be encrypted.
Some details and issues regarding FileVault can be read here:
http://en.wikipedia.org/wiki/FileVault
There's some commercial solutions for full disk encryption on Mac OS X, though I haven't used any of them:
http://www.checkpoint.com/press/2008/fdemac052808.html
http://www.pgp.com/products/wholediskencryption/
Using the guide above (thanks Dirk) I was able to swap the order of the partitions, moving my Vista partition to be the first partition on my drive. A couple of things to mention:
1 - I also used Refit to give me a nice boot option screen at startup before I did this. After swapping the partitions, Refit continues to work perfectly. I'm not sure how things would work without Refit though, I just know it worked with Refit.
2 - After backing up both OS's (OSX using Carbon Copy Cloner and Vista using WinClone) I wiped the drive of partitions as Dirk suggested. I then had to create a new Windows parition, and a second partition for Mac OSX. I then booted into OSX and reformatted that partition using Disk Utility.
3 - After copying my Vista backup image back onto the newly created Windows partition, I couldn't get it to start up. No startup repair I did could repair this (I tried everything I could possibly find, including all of Vista's startup repair tools and command-line options). I was forced to do a clean install of Vista and then put my data back on.
Those were the few issues I faced, which are small potatoes compared to the benefit of being able to encrypt my drive using TrueCrypt, and use Acronis True Image Workstation properly (it too had issues with the Windows partition being the second partition on the drive).
So I'm up and running. It works, and I thought my experiences might help others reading this in the future!
Good Luck
1 - I also used Refit to give me a nice boot option screen at startup before I did this. After swapping the partitions, Refit continues to work perfectly. I'm not sure how things would work without Refit though, I just know it worked with Refit.
2 - After backing up both OS's (OSX using Carbon Copy Cloner and Vista using WinClone) I wiped the drive of partitions as Dirk suggested. I then had to create a new Windows parition, and a second partition for Mac OSX. I then booted into OSX and reformatted that partition using Disk Utility.
3 - After copying my Vista backup image back onto the newly created Windows partition, I couldn't get it to start up. No startup repair I did could repair this (I tried everything I could possibly find, including all of Vista's startup repair tools and command-line options). I was forced to do a clean install of Vista and then put my data back on.
Those were the few issues I faced, which are small potatoes compared to the benefit of being able to encrypt my drive using TrueCrypt, and use Acronis True Image Workstation properly (it too had issues with the Windows partition being the second partition on the drive).
So I'm up and running. It works, and I thought my experiences might help others reading this in the future!
Good Luck
I can only tell for Win XP as I dont't have Vista. The reason for not booting after transferring Windows to the first partition lies in c:\boot.ini:
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional"
The above is how it looks when its the first partition. Installed on the second partition "partition(1)" should read "partition(2)". Hence manually changing boot ini to "partition(1)" might help -- if there's still a boot.ini under Vista. Which I'm not sure of.
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional"
The above is how it looks when its the first partition. Installed on the second partition "partition(1)" should read "partition(2)". Hence manually changing boot ini to "partition(1)" might help -- if there's still a boot.ini under Vista. Which I'm not sure of.
Many thanks for this unique solution - it's just what I was looking for. The one thing the post is missing is to complete the steps in actually getting TrueCrypt to secure the Windows partition...
I have a new MacBook Pro cleaned out of the box with 3 Partitions:
1) 16GB (NTFS) Windows XP
2) 16GB (FAT32) currently unused
3) ~212GB (HFS+) OS X Leopard
I did the XP install, then booted from external disk and restored a clean Leopard install to the 3rd partition, installed rEFIt 0.12, fixed Windows booting and had a perfectly running Dual-boot (plus VMWare Fusion) setup.
Then I booted native into Windows and installed TrueCrypt 1.6a and chose to encrypt the system partition. The Test went well installing the TrueCrypt Bootloader and the disk encrypted just fine. After rebooting the machine the Windows Partition was gone from rEFIt making it impossible to boot. Booting OSX VMWare also could not use the partition anymore. From TrueCrypt in OSX I could mount the Windows system partition without issue and everything was intact, so just booting is the issue.
How can I make rEFIt happy after encrypting Windows? And as an extended wish, VMWare Fusion (or Parallels)? I looked for a way using the rEFIt shell to manually specify a parition but came up empty.
I have cycled several times, doing a full decrypt, dual-boot is fine again, encrypt system partition and Windows is lost, etc, etc.
Any help would be greatly appreciated. Thanks.
I have a new MacBook Pro cleaned out of the box with 3 Partitions:
1) 16GB (NTFS) Windows XP
2) 16GB (FAT32) currently unused
3) ~212GB (HFS+) OS X Leopard
I did the XP install, then booted from external disk and restored a clean Leopard install to the 3rd partition, installed rEFIt 0.12, fixed Windows booting and had a perfectly running Dual-boot (plus VMWare Fusion) setup.
Then I booted native into Windows and installed TrueCrypt 1.6a and chose to encrypt the system partition. The Test went well installing the TrueCrypt Bootloader and the disk encrypted just fine. After rebooting the machine the Windows Partition was gone from rEFIt making it impossible to boot. Booting OSX VMWare also could not use the partition anymore. From TrueCrypt in OSX I could mount the Windows system partition without issue and everything was intact, so just booting is the issue.
How can I make rEFIt happy after encrypting Windows? And as an extended wish, VMWare Fusion (or Parallels)? I looked for a way using the rEFIt shell to manually specify a parition but came up empty.
I have cycled several times, doing a full decrypt, dual-boot is fine again, encrypt system partition and Windows is lost, etc, etc.
Any help would be greatly appreciated. Thanks.
It was all long ago when I did this, so I'm not entirely sure, but maybe the refit gets in the way. I can only say it did work for me. Maybe removing refit will do. Sorry for not being able to give a clearer answer.
For VMWare not being able to boot off the truecrypted windows, I cannot tell anything neither.
For VMWare not being able to boot off the truecrypted windows, I cannot tell anything neither.
Did you select single-boot or multi-boot during the wizard? For example:
(http://www.randyjensenonline.com/blog/wp-content/uploads/2008/04/truecrypt4.jpg)
I tried with multi-boot and faced the very same problems. After I selected a single-boot choice, I could boot the windows partition by pressing the option (alt) and selecting the windows disk as a boot disk.
(http://www.randyjensenonline.com/blog/wp-content/uploads/2008/04/truecrypt4.jpg)
I tried with multi-boot and faced the very same problems. After I selected a single-boot choice, I could boot the windows partition by pressing the option (alt) and selecting the windows disk as a boot disk.
I think, I selected single-boot, as windows doesn't know about other OS' on the machine and there's neither the typical lilo or grub boot mechanism in place.
All the booting is being done by Apple's OpenFirmware, and maybe the rEFIt boot manager as well.
So I would chose single-boot.
All the booting is being done by Apple's OpenFirmware, and maybe the rEFIt boot manager as well.
So I would chose single-boot.
Great article, will this same process work for Vista in place of XP?
Thanks
Thanks
Hi all,
Perhaps you can help with a situation that I would like to set up.
I would like to partition my MBP as follows (order not important):
1) WinXP partition of say 20GB
2) Mac OS X partition of say 20GB
3) Common data partition of the rest (around 280GB)
The trick is that I want the common data partition to be TrueCrypted and accessible (both read and write) from both operating systems.
Anyone have any pointers on how to do this? I've searched the web and come up empty with a solution that works.
I have been able to do the file container type encryption with TC but I want to try the partition method.
Any tips (or references to other articles that help) would be greatly appreciated. The biggest issue I have is when doing the trial-and-error approach that I have been using up to now is that the windows install takes forever (I'll do a clone in future though
.
Thanks and regards
Swalt
Perhaps you can help with a situation that I would like to set up.
I would like to partition my MBP as follows (order not important):
1) WinXP partition of say 20GB
2) Mac OS X partition of say 20GB
3) Common data partition of the rest (around 280GB)
The trick is that I want the common data partition to be TrueCrypted and accessible (both read and write) from both operating systems.
Anyone have any pointers on how to do this? I've searched the web and come up empty with a solution that works.
I have been able to do the file container type encryption with TC but I want to try the partition method.
Any tips (or references to other articles that help) would be greatly appreciated. The biggest issue I have is when doing the trial-and-error approach that I have been using up to now is that the windows install takes forever (I'll do a clone in future though
.Thanks and regards
Swalt
The sophisticated way would be to re-partition the Mac harddisk to have a third partition, but that will most likely break Bootcamp booting and is quite some work - as I described here.
You could make your life easier and use Bootcamp to make (quite some) room for Windows, place the TrueCrypt Volume as a simple file on the NTFS partition and install an NTFS drive on the Mac side that is able to read AND write.
Like http://code.google.com/p/macfuse/ for instance. I haven't tried MacFuse with NTFS though.
Thus you would have windows and Mac OS along with a TC volume, accessible by both OS'.
You could make your life easier and use Bootcamp to make (quite some) room for Windows, place the TrueCrypt Volume as a simple file on the NTFS partition and install an NTFS drive on the Mac side that is able to read AND write.
Like http://code.google.com/p/macfuse/ for instance. I haven't tried MacFuse with NTFS though.
Thus you would have windows and Mac OS along with a TC volume, accessible by both OS'.
Hi,
i don't know how to make a mac partition, and google doesn't help
I think this is because of my (mayybe) wrong kewords.
Could you please give me a link to a tutorial?
Thanks
i don't know how to make a mac partition, and google doesn't help
I think this is because of my (mayybe) wrong kewords.
Could you please give me a link to a tutorial?
Thanks
Hello, I´ve done all things but after I restore on another partition MacOSX I cant select the Windows partition in bootmenue screen... but Windows is still there, I havent deleted it... but I cant boot from the partition and so I cant go into rescue mode for fixboot (because I cant start the CD if I cant go into windows)
I´ve executed fixboot now after I could access the CD.
But there isn´t a windows partition as bootable marked in the boot-up screen...
How can I tell my mac to boot from the windows partition ?
I cant select it at the boot-up menue...
But there isn´t a windows partition as bootable marked in the boot-up screen...
How can I tell my mac to boot from the windows partition ?
I cant select it at the boot-up menue...
Everything is fixed now !
I´ve reinstalled Windows and now the boot-loader screen is showing me both partitions !
thanks for this manuel !
thanks thanks thanks
I´ve reinstalled Windows and now the boot-loader screen is showing me both partitions !
thanks for this manuel !
thanks thanks thanks
I am trying the whole day to setup:
partition 1: min. 32KB for truecrypt loader
partition 2: windows 7 partition
partition 3: mac partition
Mac can't format partition 3 since it has MBR not GUI partition tables. I converted to GPT but formatting with apple hd util fails.
Question Do I need MBR/GPT or hybrid for my configuration?
partition 1: min. 32KB for truecrypt loader
partition 2: windows 7 partition
partition 3: mac partition
Mac can't format partition 3 since it has MBR not GUI partition tables. I converted to GPT but formatting with apple hd util fails.
Question Do I need MBR/GPT or hybrid for my configuration?
Yes, it appears as if you need rEFIt to sync the MBR partition table with the GPT table.
Hey guys i still need your help. There are a lot of users how done it so, i would like to ask you what to do after restoring windows. I know have to do a mac partition i think. But its now MBR and this doesn't work...
I hope you can answer me.
I hope you can answer me.
I just followed this guide and successfully encrypted my Windows partition with TrueCrypt. For me following all the steps works well except using rEFit. I couldn't boot to Windows until AFTER I uninstalled it. Besides that, everything went smoothly. Keep in mind MBR is fine and Snow Leopard (and I'm assuming Leopard) will boot from it without any problems.
Just did the install with windows 7 and snow leopard. Got truecrypt working perfectly!!! I used the guide above and the one found here:
http://blog.claesbrandt.dk/post/Dual-Boot-Windows-Mac-Encrypt-Windows-With-Truecrypt.aspx
Tip:
I needed to install rEFIt in order complete the step to get the windows partion to boot. I already had windows in place. I backed up and restored with winclone. I am not sure that you if you will need rEFIt if you do a fresh install of windows. rEFIt is a much nice boot loader then the mac one anyway.
My steps:
1. Backup mac with carbon copy cloner to a USB drive.
2. Backup windows boot camp install with Wincloan on the MAC to the USB.
3. Boot with the windows disk, delete all partitions on the internal hard drive. Create 2 new ones one for windows and one for MAc. I had to create both so that the restore of the windows via wincloan would not install at the end of the drive. I made the second one just as a place holder. There will be a third partition that will be created automatically by the windows 7 CD at the beginning of the drive, just ignore that for now.
5. Boot to the MAC OS you copied over to USB.
6. Restore the windows to the first partition on the Hard drive via wincloan.
7. Restore the mac to the second partition on the drive via carbon copy cloner.
- use the Mac diskutil to format the second drive as a Mac Extended format.
8. Unplug the USB and Boot to the Mac OS that is now on the second partition of the insternal drive and install rEFIt.
9. Boot to the windows 7 CD and repair the start up 3,4 times.
10 . After that is done you should now be able to boot windows via to the first windows partion in rEFIt.
11. Install truecrypt.
12. After installation refit should now only have one MAC OS and one windows. Truecrypt should work as normal.
http://blog.claesbrandt.dk/post/Dual-Boot-Windows-Mac-Encrypt-Windows-With-Truecrypt.aspx
Tip:
I needed to install rEFIt in order complete the step to get the windows partion to boot. I already had windows in place. I backed up and restored with winclone. I am not sure that you if you will need rEFIt if you do a fresh install of windows. rEFIt is a much nice boot loader then the mac one anyway.
My steps:
1. Backup mac with carbon copy cloner to a USB drive.
2. Backup windows boot camp install with Wincloan on the MAC to the USB.
3. Boot with the windows disk, delete all partitions on the internal hard drive. Create 2 new ones one for windows and one for MAc. I had to create both so that the restore of the windows via wincloan would not install at the end of the drive. I made the second one just as a place holder. There will be a third partition that will be created automatically by the windows 7 CD at the beginning of the drive, just ignore that for now.
5. Boot to the MAC OS you copied over to USB.
6. Restore the windows to the first partition on the Hard drive via wincloan.
7. Restore the mac to the second partition on the drive via carbon copy cloner.
- use the Mac diskutil to format the second drive as a Mac Extended format.
8. Unplug the USB and Boot to the Mac OS that is now on the second partition of the insternal drive and install rEFIt.
9. Boot to the windows 7 CD and repair the start up 3,4 times.
10 . After that is done you should now be able to boot windows via to the first windows partion in rEFIt.
11. Install truecrypt.
12. After installation refit should now only have one MAC OS and one windows. Truecrypt should work as normal.
Quicksearch
Archives
Syndicate This Blog
Powered by
Top Referrers
finasteride.beep.com (189)
www.everyoneweb.com (33)
www.google.com (33)
ukpropecia.blinkweb.com (30)
www.beeplog.com (29)
world-ed.jw.lt (27)
lelevitra.npage.eu (18)
www.galeon.com (18)
adarutojp.web.fc2.com (15)
getpropecia.blinkweb.com (15)
www.everyoneweb.com (33)
www.google.com (33)
ukpropecia.blinkweb.com (30)
www.beeplog.com (29)
world-ed.jw.lt (27)
lelevitra.npage.eu (18)
www.galeon.com (18)
adarutojp.web.fc2.com (15)
getpropecia.blinkweb.com (15)
Encrypt Windows 7 system drive in BootCamp / on a Mac
Tracked: Feb 17, 23:50
Encrypt Windows 7 system drive while dual booting Windows / Mac OS (not bootcamp)
Tracked: Feb 17, 23:51
Dual boot Windows 7 and Mac OS X while encrypting windows system drive (not bootcamp)
Tracked: Feb 18, 22:03