*New 11.3 series Release:
2019-10-05: XigmaNAS 11.3.0.4.6928 - released, 11.2 series are soon unsupported!

*New 12.0 series Release:
2019-10-05: XigmaNAS 12.0.0.4.6928 - released!

*New 11.2 series Release:
2019-09-23: XigmaNAS 11.2.0.4.6881 - released!

We really need "Your" help on XigmaNAS https://translations.launchpad.net/xigmanas translations. Please help today!

Producing and hosting XigmaNAS costs money. Please consider donating for our project so that we can continue to offer you the best.
We need your support! eg: PAYPAL

use key stored in file to encrypt volume

Encrypting information and help
Forum rules
Set-Up GuideFAQsForum Rules
Post Reply
rs232
Starter
Starter
Posts: 59
Joined: 25 Jun 2012 13:48
Status: Offline

use key stored in file to encrypt volume

#1

Post by rs232 » 04 Dec 2012 11:10

Is it possible to store the encryption key in a file?

I read about a scenarios where the key is stored in on a different site (via VPN) and used automatically at boot time. This way if somebody steals the NAS box the key file is not found any more and will not mount the volume when booted.

I would like to achieve the same but the current encryption accept only GUI based passwords and not key files.

Any help?

P.S. another example is truecrypt that does allow both password and file based passwords

Appreciated!
rs232

nas4free.os
NewUser
NewUser
Posts: 9
Joined: 19 Feb 2016 13:44
Status: Offline

Re: use key stored in file to encrypt volume

#2

Post by nas4free.os » 19 Feb 2016 16:02

although a very old request.. I think a very good idea !!

in case someone reads this now... would be very much interested too in such an "architecture"

noclaf
experienced User
experienced User
Posts: 125
Joined: 08 Dec 2013 12:37
Status: Offline

Re: use key stored in file to encrypt volume

#3

Post by noclaf » 19 Feb 2016 16:26

I'm not master with N4F but I guess it shouldn't be issue to create script which is run @ boot that will run the decrypt using key stored in a different location. I think GUI is only nice "face" to the underlying simple command.
I don't know if you can use file as a whole (but even Truecrypt looks only at first 1MB) but certainly you can use some insane string which you enter once manually when encrypting the volume in GUI and afterwards it s going to be saved in the file.

User avatar
b0ssman
Forum Moderator
Forum Moderator
Posts: 2458
Joined: 14 Feb 2013 08:34
Location: Munich, Germany
Status: Offline

Re: use key stored in file to encrypt volume

#4

Post by b0ssman » 20 Feb 2016 07:35

look at my script from here.
viewtopic.php?f=67&t=2165

replace the password entry with a wget command to get the file from a different host.
Nas4Free 11.1.0.4.4517. Supermicro X10SLL-F, 16gb ECC, i3 4130, IBM M1015 with IT firmware. 4x 3tb WD Red, 4x 2TB Samsung F4, both GEOM AES 256 encrypted.

Post Reply

Return to “Encryption”