4
2
I've got an old hard disk, containing an encrypted partition with a file system on it. It was created (and used) several years ago, the way it was done back then was using losetup
with the twofish
encryption (via kernel module loop_fish2
) and then mounting the loop device prepared this way.
Nowadays this is not possible out of the box anymore. The kernel module is not part of the distributions, etc.
Does anybody know a way how to achieve my goal?
EDIT:
I found some hints in this cryptsetup manpage to use it with the options --cipher twofish-cbc-null -s 256 -h sha512
but I get a rather surprising error message:
$ sudo cryptsetup --cipher twofish-cbc-null -s 256 -h sha512 luksOpen /dev/sdd1 dm0
Usage: cryptsetup [-?vyrq] [-?|--help] [--usage] [--version] [-v|--verbose] [--debug]
[-c|--cipher=STRING] [-h|--hash=STRING] [-y|--verify-passphrase] [-d|--key-file=STRING]
[--master-key-file=STRING] [--dump-master-key] [-s|--key-size=BITS]
[-l|--keyfile-size=bytes] [--new-keyfile-size=bytes] [-S|--key-slot=INT]
[-b|--size=SECTORS] [-o|--offset=SECTORS] [-p|--skip=SECTORS] [-r|--readonly]
[-i|--iter-time=msecs] [-q|--batch-mode] [-t|--timeout=secs] [-T|--tries=INT]
[--align-payload=SECTORS] [--header-backup-file=STRING] [--use-random] [--use-urandom]
[--shared] [--uuid=STRING] [--allow-discards] [--header=STRING]
[OPTION...] <action> <action-specific>]
cryptsetup: Option --key-size is allowed only for luksFormat, create and loopaesOpen.
To limit read from keyfile use --keyfile-size=(bytes).
An explanation or workaround or any other help on that would also be appreciated :-}
1Couldn't you just recreate what you used to encrypt it and then take the decrypted files and copy them over to the regular drive – Griffin – 2013-03-08T22:35:12.357
That would mean to set up an old SuSE from around 2007 or so (I'm not sure anymore from when this was, could be some years more or less). That doesn't sound easy. I hoped to be able to mount that thing on a modern ubuntu. – Alfe – 2013-03-08T22:50:15.987
The only way this would work is if you will to find a distro that supports this module or add the support yourself. – Ramhound – 2013-03-08T23:40:21.830
I hope there is a workaround using
cryptsetup (8)
or the kernel modulecryptoloop
; documentation of those sometimes mention a support for an obsoleteloop_fish2
. – Alfe – 2013-03-08T23:47:54.090