75
42
I have a laptop running Windows 7 Ultimate. I have encrypted my drives using BitLocker. Now I have also installed Lubuntu along with Windows. But my encrypted drives are not visible in Linux. How can I fix this?
Suyash Mohan
Posted 2012-01-09T18:43:24.640
Reputation: 955
65
You can access BitLocker partition under Linux using Dislocker, an opensource driver which is using FUSE (or not).
For that, you need the file on a USB key (the one with the .bek extension) or the recovery password.
Aorimn
Posted 2012-01-09T18:43:24.640
Reputation: 651
6@Aorimn if Bitlocker is a proprietary Microsoft encryption method... how is it you've managed to interface with it? – Ashley – 2016-02-01T17:05:07.337
1But i don't have any USB key or recovery password. I did not setup the encryption, it came encrypted from factory settings. Where do i find the key? – Youda008 – 2018-09-20T16:40:49.200
@Youda008 if it still boots, run manage-bde -protectors -get c: to retrieve the key - at your first available opportunity. Otherwise if it decides to stop booting one day (e.g. BIOS change), it will be unrecoverable. – mwfearnley – 2019-12-11T08:50:37.817
5Fairly recent file dates, looks like it's being maintained. With write capabilities. – Fiasco Labs – 2013-10-21T23:04:44.647
It seems @Aorimn is mantaining a version on github: https://github.com/Aorimn/dislocker/tree/develop
– adosaiguas – 2014-05-21T00:29:53.01332
Thanks to Aorimn, his solution worked for me. I'm fairly unexperienced with Unix, so it cost a few hours to figure it out. I thought I would describe the steps I took while my backup is running :)
My problem was that I could not boot Windows, and I needed a way to access my files on a Bitlocked partition. In order to do this, you need a bitlocker recovery password (8 groups of digits) and the ability to boot your system from USB.
LiLi on an other Windows machine (Linux Live USB Creator)LiLi and have it download a lightweight ubuntu image. I chose Xubuntu.F6, set the following options: nomodeset, acpi=off, noacpi and nolacpiubuntu./media/windows and /media/mount. sudo apt-get install libfuse-dev libpolarssl-devdislocker/src foldersudo makesudo make install/usr/binsudo fdisk -l/dev/sda1.sudo dislocker -r -V /dev/sda1 -p315442-000000-000000-000000-000000-000000-000000-000000 -- /media/windows (replace your own bitlocker key and source partition)/media/windows (use sudo -i if you can't access it)mount -o loop dislocker-file /media/mountBackups are fairly slow, but it might save some trouble if you do end up reinstalling windows. Good luck!
Jodiug
Posted 2012-01-09T18:43:24.640
Reputation: 421
2dislocker is now (as of Ubuntu 18.04) available in Ubuntu's repositories, so you can install it by running sudo apt install dislocker instead of building from source. – Dominik – 2018-05-14T14:15:18.200
Is there a solution other than using dislocker? The problem is that dislocker requires compiling and (like virtually every other time I try) compiling fails. – Tensigh – 2018-08-02T08:04:23.623
5From the above steps I wasn't clear how dislocker is functioning, so here is the info, from the source "With FUSE, you have to give the program a mount point. Once keys are decrypted,
a file named dislocker-file appears into this provided mount point. This file
is a virtual NTFS partition, so you can mount it as any NTFS partition and then
read from it or write to it." – xpt – 2014-02-20T14:59:18.290
7
I just worked out a way to update Kali Linux and install dislocker.
Using Kali Linux 1.0.9a i386 bootable DVD
Edit "/etc/apt/sources.list" and add:
deb http://us.archive.ubuntu.com/ubuntu trusty main universe
Install programs using Terminal:
apt-get update"
apt-get install git libfuse-dev libpolarssl-dev # Continue through update text, allow services to restart if needed
git clone git://github.com/Aorimn/dislocker.git
cd /dislocker/src
make
make install
Find drive Bitlocker volume:
fdisk -l
Make folders in /mnt: tmp, dis.
Run dislocker:
dislocker -v -V /dev/<volume name> -p<Bitlocker key> -- /mnt/tmp
Check if file exists to confirm proper Bitlocker key:
ls /mnt/tmp
Should return dislocker-file if correct.
Mount volume:
mount -o loop,ro /mnt/tmp/dislocker-file /mnt/dis
Browse to /mnt/dis for access to files.
Dopefish
Posted 2012-01-09T18:43:24.640
Reputation: 71
dislocker doesn't work in Kali Linux 2.0. When I try the make command, following output appears:
dislocker-fuse.c:35:19: fatal error: fuse.h: No such file or directory
And manually handling ( apt-get install libfuse-dev )
The following packages have unmet dependencies:
– cagcak – 2015-08-18T14:24:12.343libfuse-dev: Depends:libselinux-dev
Great step-by-step instructions. Only thanks to this I learned that the dislocker command is not mounting itself (like sshfs or other things). – Tomasz Gandor – 2018-05-11T07:37:51.300
2
BitLocker is a proprietary, closed-source drive encryption system only supported by Windows. You'll have to remove BitLocker encryption if you want to access your Windows partitions from Linux.
See What is the difference between disabling BitLocker Drive Encryption and decrypting the volume? for instructions on doing so. It would be advisable to have a backup of your data completed first.
Once the drive is decrypted, you can use TrueCrypt instead; reading a System Encryption volume under Linux isn't supported by default, but someone has figured out a work-around. See How to use TrueCrypt®-encrypted Windows system drives on Linux.
At the very least, review the TrueCrypt documentation and more specifically, the list of supported OSes.
Yet another option is PGP Whole Disk Encryption. See PGP Whole Disk Encryption for Dual Boot Linux and Windows XP.
Brett Dikeman
Posted 2012-01-09T18:43:24.640
Reputation: 1 112
Perhaps update for TrueCrypt. Steve Gibson has a page for it.
– Peter Mortensen – 2015-05-04T11:15:27.6633
@BrettDikeman You may want to adjust or delete your answer as it does not apply (or is no longer true). See https://superuser.com/a/421314/118989.
– Jonathan Komar – 2017-06-20T07:18:32.110@TomaszGandor what is the update exactly? Is bitlocker not closed-source anymore? How does Dislocker actually get 'around' it? – user2305193 – 2018-07-05T20:48:06.030
1
The only thing I've found that might help you is NVbit. It's an experimental fuse driver that allows you to access BitLocker volumes. It's still in an alpha state, and it looks like you'll have to compile the code yourself. It also only allows read-only access, and some things might not work. I think it's your best bet, though.
SaintWacko
Posted 2012-01-09T18:43:24.640
Reputation: 1 482
I agree this is probably your best bet at the current time. – Mark S. – 2012-05-19T02:48:24.133
for those that downloaded extracted and installed dislocker, and find it to be a bit buggy, use this command while cd'd in the src folder. sudo make uninstall – blade19899 – 2012-10-12T16:58:49.400
@MichaelHampton NVbit: Accessing Bitlocker volumes from linux. Looks good to me. – SaintWacko – 2013-01-07T14:25:36.257
How usable is it? Apart from "The code is in alpha state."", I also see "The research was done around an year ago.Work was stopped prematurely,Don't expect things in clean/finished shape." Moreover, It also only allows read-only access, while dislocker at least allows RW access. Any first-hand experience-user comment please? – xpt – 2014-02-20T15:05:39.010
@xpt I don't have any experience with it, I just found it through Goole-Fu. I would recommend using Dislocker, as it's newer, and appears to be in much better state than what I found. – SaintWacko – 2014-02-20T16:38:00.017
0
Please note that libpolarssl-dev can't be used, it has been supersede with libmbedtls-dev so use this instead:
sudo apt-get install libmbedtls-dev
Note: by the way, it was a success using live boot. I am able to read and write. Just follow above steps.
kelvin singh
Posted 2012-01-09T18:43:24.640
Reputation: 1
There's a pretty detailed answer at https://askubuntu.com/a/617989/25639 too.
– unhammer – 2018-04-24T07:40:16.2104Hi Zeal, is your question answered sufficiently? If so, please pick an answer to close the question. – Brett Dikeman – 2012-01-13T19:49:21.770