1
Is it possible to enable TrueCrypt's pre-boot authentication with system partition not encrypted? I would like to encrypt only the other partition where I store data and I would like it to be automounted at boot time (not at Windows logon).
rafalry
Posted 2012-01-03T19:28:27.463
Reputation: 111
2
It is possible to automount an encrypted partition before Windows logon if you are willing to store password as plain text on your system partition. On the other hand, pre-boot auth in TrueCrypt is closely coupled with encrypting the system partition, so I'd say you cannot do what you want without modifying TrueCrypt.
If you consider going the former route, a simple one-liner such as
"C:\Program Files\TrueCrypt\truecrypt.exe" /auto /volume \Device\Harddisk0\Partition3 /letter S /password "yourpasswordgoeshere" /quit /silent
would do the trick.
Also, the performance hit from encrypting the whole system is not huge with TrueCrypt, especially with latest disk and CPU technology (SSD, AES NI instructions). Even on older hardware it is tolerable and at times unnoticable.
minya
Posted 2012-01-03T19:28:27.463
Reputation: 378
Why don't you want to encrypt the entire drive? – cmorse – 2012-01-03T20:03:53.090
Does your hard drive support aes encryption? You can set a hard drive password in the BIOS and would essentially do similar. – kobaltz – 2012-01-03T20:08:23.493
@cmorse I do not want to encrypt the entire drive because I need can't afford the loss of performance. – rafalry – 2012-01-30T08:55:15.970
@rafalry - You are only talking a small performance decrease, one you will even notice, feel free to do something the stupid way though. – Ramhound – 2012-04-03T14:58:52.923