|
Title: Anybody had any luck decrypting a Truecrypt volume? :( Post by: Blazr on December 23, 2012, 12:15:53 PM -
Title: Re: Anybody had any luck decrypting a Truecrypt volume? :( Post by: John (John K.) on December 23, 2012, 12:22:32 PM So... yeah I really fucked up. Don't try to bruteforce it.I have a truecrypt volume with my BTC wallet, KeePass DB (all my passwords for everything), my taxes, 5 years of backups for around 1000 websites and a whole bunch of other insanely important things on it. I've been keeping my password for this drive on a yubikey. I happen to have a bunch of yubikeys for various different things, and earlier today I mistakenly overwrite the yubikey with my truecrypt password on it. The password is 32 chars long (upper & lowercase letters and numbers) & I'm running Arch. I know I'm screwed, but just in the offchance, is it possible in anyway to recover the password? Is there somewhere that truecrypt may have temporarily stored my PW? Is there anyway at all I may be able to recover the password from my yubikey? And how many years should it take to brute-force? If it was a dictionary entry or something, http://code.google.com/p/truecrack/ might work. 32 random chars? No. My condolences. Title: Re: Anybody had any luck decrypting a Truecrypt volume? :( Post by: BlackBison on December 23, 2012, 12:28:26 PM No chance unfortunately:
http://www.lockdown.co.uk/?pg=combi (http://www.lockdown.co.uk/?pg=combi) Bear in mind truecrypt uses bcrypt i belive, which drops the number of brute force attempts per second by several orders of magnitude. Title: Re: Anybody had any luck decrypting a Truecrypt volume? :( Post by: John (John K.) on December 23, 2012, 12:36:05 PM Quote Easy to program own secrets The YubiKey requires no special hardware for programming, enabling you to easily program and control your own encryption keys. If required, Yubico offer optional password write protection of the settings, but all YubiKeys sold on our web store can be re-programmed. For security reasons Yubico firmware is not upgradable, it’s a write only device and the encryption key can never be read out from the device. Tamper proof casing The YubiKey is based on standard components, high-pressure moulded into plastic, making it practically impossible to tamper. If tampered, it will require sophisticated equipment to read out the secrets and cannot be done without physically destroying the device. Each YubiKey is seeded individually, so any breach would be for that unique Yubikey only, there is no systemic breach. If lost or stolen, the user administrator can easily disable the YubiKey so that it no longer can be used. I'm sorry, but do you have an unencrypted backup ? It's impossible to read the keys out especially when you've overwritten it. How much damage was caused? Title: Re: Anybody had any luck decrypting a Truecrypt volume? :( Post by: John (John K.) on December 23, 2012, 01:01:45 PM I'm sorry, but do you have an unencrypted backup ? I wish. I have a paper copy of my BTC wallet in a safety deposit box in a bank 300km away (thank god its a deterministic wallet) along with copies of some of the important documents, but I've lost most of my data. This sucks so bad. |