Full TiddlyWiki Encryption
946 views
Skip to first unread message
bluespire
Mar 4, 2012, 1:45:29 PM3/4/12
to TiddlyWiki
Hello,
Is it there solutions, or is it even possible, to have the entire wiki
encrypted on disk in it's default form. I'm thinking a firefox
extension may have to exist for this, but I would think it is possible
within the first lines of code in the html.
I know there are a few plugins that encrypt individual tiddlers, but
that is not what I'm looking for. I want ALL the content encrypted on
disk be default. This, if you ask me, should be even easier that
individual tiddlers.
Here is what I envision. One open's the wiki in firefox, and is
greeted by a simple login screen. One enters the password, and is then
greeted by their normal looking TW. The TW code would be modified so
that every time it saves, it would automatically save encrypted code
to disk.
Essentially, the TW would me UNENCRYPTED while firefox has it open,
but this should be in memory only, as I do not believe FF would
maintain a cached copy, and even if it did, I suspect it would be of
the file itself, which would be the disk version. It should only be
unencrypted in memory, which is perfectly fine, in most cases.
Although, I suppose a real FF extension could be written to purge that
memory space when the file is closes to prevent clear-text from being
saved after the file is closed, but I'm not even interested at this
point in THAT much security.
My goal here is to maintain my use of Dropbox and natural sync
solution, but maintain my security without having to wrap it with
another program.
Is this possible?
Is it there solutions, or is it even possible, to have the entire wiki
encrypted on disk in it's default form. I'm thinking a firefox
extension may have to exist for this, but I would think it is possible
within the first lines of code in the html.
I know there are a few plugins that encrypt individual tiddlers, but
that is not what I'm looking for. I want ALL the content encrypted on
disk be default. This, if you ask me, should be even easier that
individual tiddlers.
Here is what I envision. One open's the wiki in firefox, and is
greeted by a simple login screen. One enters the password, and is then
greeted by their normal looking TW. The TW code would be modified so
that every time it saves, it would automatically save encrypted code
to disk.
Essentially, the TW would me UNENCRYPTED while firefox has it open,
but this should be in memory only, as I do not believe FF would
maintain a cached copy, and even if it did, I suspect it would be of
the file itself, which would be the disk version. It should only be
unencrypted in memory, which is perfectly fine, in most cases.
Although, I suppose a real FF extension could be written to purge that
memory space when the file is closes to prevent clear-text from being
saved after the file is closed, but I'm not even interested at this
point in THAT much security.
My goal here is to maintain my use of Dropbox and natural sync
solution, but maintain my security without having to wrap it with
another program.
Is this possible?
PMario
Mar 4, 2012, 4:56:46 PM3/4/12
to TiddlyWiki
I'd use a system like described here.
Makes it possible to use any type of encrypted files with Linux, Mac
an Win systems.
http://www.webupd8.org/2011/06/encrypt-your-private-dropbox-data-with.html
On Mar 4, 7:45 pm, bluespire <gswrut...@gmail.com> wrote:
>... This, if you ask me, should be even easier that
> individual tiddlers.
Yes it is.
> ... but I'm not even interested at this
I don't see any reason, to encrypt the stuff at all. If you just don't
want to send plain text to Dropbox I'd have a look at the link above.
-m
Makes it possible to use any type of encrypted files with Linux, Mac
an Win systems.
http://www.webupd8.org/2011/06/encrypt-your-private-dropbox-data-with.html
On Mar 4, 7:45 pm, bluespire <gswrut...@gmail.com> wrote:
>... This, if you ask me, should be even easier that
> individual tiddlers.
Yes it is.
> ... but I'm not even interested at this
> point in THAT much security.
I'm pretty sure, you need to take care of the browsers cach. Otherwise
I don't see any reason, to encrypt the stuff at all. If you just don't
want to send plain text to Dropbox I'd have a look at the link above.
-m
Steve Rutter
Mar 5, 2012, 3:14:55 AM3/5/12
to tiddl...@googlegroups.com
The problem is that none of those solutions are portable. And the portable solutions require me to have to manually encrypt the file and copy over the file in my dropbox. The problem with this is that, inevitably, I have to unencrypt the file to disk, and then have FF open it. What would be nice is to have a FF extension that could see an encrypted file, discern the encryption scheme from from a line of xml and then ask for the password to decrypt before displaying it.
I know how to keep my data safe in DB, but nearly all of those use admin rights. I want to use the same wiki at work, where I don't have those rights, and cannot have support install them. While I'm not entirely concerned with touching my workstation disk, I don't want to accidentally forget to re-encrypt and upload the new file.
I know how to keep my data safe in DB, but nearly all of those use admin rights. I want to use the same wiki at work, where I don't have those rights, and cannot have support install them. While I'm not entirely concerned with touching my workstation disk, I don't want to accidentally forget to re-encrypt and upload the new file.
--
You received this message because you are subscribed to the Google Groups "TiddlyWiki" group.
To post to this group, send email to tiddl...@googlegroups.com.
To unsubscribe from this group, send email to tiddlywiki+...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/tiddlywiki?hl=en.
perlguy
Mar 5, 2012, 9:52:25 AM3/5/12
to TiddlyWiki
Have you looked at truecrypt? http://www.truecrypt.org/
There's even a portable mode (with caveats) http://www.truecrypt.org/docs/?s=truecrypt-portable
On Mar 5, 12:14 am, Steve Rutter <gswrut...@gmail.com> wrote:
> The problem is that none of those solutions are portable. And the portable
> solutions require me to have to manually encrypt the file and copy over the
> file in my dropbox. The problem with this is that, inevitably, I have to
> unencrypt the file to disk, and then have FF open it. What would be nice is
> to have a FF extension that could see an encrypted file, discern the
> encryption scheme from from a line of xml and then ask for the password to
> decrypt before displaying it.
>
> I know how to keep my data safe in DB, but nearly all of those use admin
> rights. I want to use the same wiki at work, where I don't have those
> rights, and cannot have support install them. While I'm not entirely
> concerned with touching my workstation disk, I don't want to accidentally
> forget to re-encrypt and upload the new file.
>
>
>
>
>
>
>
> On Sun, Mar 4, 2012 at 9:56 PM, PMario <pmari...@gmail.com> wrote:
> > I'd use a system like described here.
> > Makes it possible to use any type of encrypted files with Linux, Mac
> > an Win systems.
>
> >http://www.webupd8.org/2011/06/encrypt-your-private-dropbox-data-with...
There's even a portable mode (with caveats) http://www.truecrypt.org/docs/?s=truecrypt-portable
On Mar 5, 12:14 am, Steve Rutter <gswrut...@gmail.com> wrote:
> The problem is that none of those solutions are portable. And the portable
> solutions require me to have to manually encrypt the file and copy over the
> file in my dropbox. The problem with this is that, inevitably, I have to
> unencrypt the file to disk, and then have FF open it. What would be nice is
> to have a FF extension that could see an encrypted file, discern the
> encryption scheme from from a line of xml and then ask for the password to
> decrypt before displaying it.
>
> I know how to keep my data safe in DB, but nearly all of those use admin
> rights. I want to use the same wiki at work, where I don't have those
> rights, and cannot have support install them. While I'm not entirely
> concerned with touching my workstation disk, I don't want to accidentally
> forget to re-encrypt and upload the new file.
>
>
>
>
>
>
>
> On Sun, Mar 4, 2012 at 9:56 PM, PMario <pmari...@gmail.com> wrote:
> > I'd use a system like described here.
> > Makes it possible to use any type of encrypted files with Linux, Mac
> > an Win systems.
>
perlguy
Mar 5, 2012, 9:55:21 AM3/5/12
to TiddlyWiki
Apologies - on windows, even portable mode requires admin rights to
get the device driver itself loaded, which I think disqualifies it
under your conditions...
On Mar 5, 6:52 am, perlguy <perl...@gmail.com> wrote:
> Have you looked at truecrypt?http://www.truecrypt.org/
>
> There's even a portable mode (with caveats)http://www.truecrypt.org/docs/?s=truecrypt-portable
get the device driver itself loaded, which I think disqualifies it
under your conditions...
On Mar 5, 6:52 am, perlguy <perl...@gmail.com> wrote:
> Have you looked at truecrypt?http://www.truecrypt.org/
>
> There's even a portable mode (with caveats)http://www.truecrypt.org/docs/?s=truecrypt-portable
PMario
Mar 5, 2012, 11:59:48 AM3/5/12
to TiddlyWiki
On Mar 5, 9:14 am, Steve Rutter <gswrut...@gmail.com> wrote:
> The problem is that none of those solutions are portable. And the portable
> solutions require me to have to manually encrypt the file and copy over the
> file in my dropbox.
IMO this is not true. I'm referring to "EncFS works on Linux as well
> The problem is that none of those solutions are portable. And the portable
> solutions require me to have to manually encrypt the file and copy over the
> file in my dropbox.
as Mac through macfuse or Windows using BoxCryptor." in the link
above.
I don't use BoxCryptor, but it seems to be a "system level driver"
that gives you access, to transparent, file by file encryption on the
fly. So you just open your TW from the folder. If you save it,
encryption is done automatically. If you need to decrypt the data on a
linux or mac system you can use the "native" EncFS drivers, which
basically do the same. There are some howto's at the BoxCryptors page.
If you are not allowed to install software like this at your work
computer, than you have a problem.
You'll need to go with a plugin solution.
-m
Steve Rutter
Mar 5, 2012, 2:31:03 PM3/5/12
to tiddl...@googlegroups.com
Yeah, I looked at boxcrypto, it does require admin, in winxp, and it doesn't even support uac yet, so it has to be disabled.
I have a feeling I would have to write my own FF plugin, but I have no idea how to.
I have a feeling I would have to write my own FF plugin, but I have no idea how to.
-m
HansBKK
Mar 6, 2012, 10:39:52 PM3/6/12
to tiddl...@googlegroups.com
Run a VM or separate physical boot from a external HDD (preferably e-sata for speed).
PMario
Mar 7, 2012, 2:42:05 AM3/7/12
to TiddlyWiki
Hi Steve,
As a workaround, you may use this little app: http://www.rohos.com/
I did get it once preloaded on a USB stick. Works quite well.
-m
As a workaround, you may use this little app: http://www.rohos.com/
I did get it once preloaded on a USB stick. Works quite well.
-m
Måns
Mar 7, 2012, 7:22:04 AM3/7/12
to TiddlyWiki
Hi Mario
... this little app:http://www.rohos.com/
crossplatform - and no installation is needed on host computers...
Thanks for sharing!
I usually create two partitions on my usb's - First one as FAT32 and
the second in some ext-variant (2, 3 or 4)... This means that I can
only access the second partition when I'm using Linux - or boot into a
livesystem from the usb....
Not very secure - however it works for me as a quick and easy a "hide
for the average Win-user" who might accidentially find my misplaced
usb ...
I like the concepts used in TiddlyFolio http://tiddlyfolio.tiddlyspot.com/
...
It's pretty easy to change the layout of how it displays encrypted
material - and you can set it up to encrypt all new tiddlers with the
same password - thus being able to decrypt all at once ....
Cheers Måns Mårtensson
... this little app:http://www.rohos.com/
> I did get it once preloaded on a USB stick. Works quite well.
Seems to be a great app for securing data on an usb, it's
crossplatform - and no installation is needed on host computers...
Thanks for sharing!
I usually create two partitions on my usb's - First one as FAT32 and
the second in some ext-variant (2, 3 or 4)... This means that I can
only access the second partition when I'm using Linux - or boot into a
livesystem from the usb....
Not very secure - however it works for me as a quick and easy a "hide
for the average Win-user" who might accidentially find my misplaced
usb ...
I like the concepts used in TiddlyFolio http://tiddlyfolio.tiddlyspot.com/
...
It's pretty easy to change the layout of how it displays encrypted
material - and you can set it up to encrypt all new tiddlers with the
same password - thus being able to decrypt all at once ....
Cheers Måns Mårtensson
David Szego
Apr 2, 2012, 3:11:51 PM4/2/12
to tiddl...@googlegroups.com
Just use the EncryptedVaultPlugin from here:
http://visualtw.ouvaton.org/VisualTW.html#EncryptedVaultPlugin
Works great for me!
Cheers,
David Szego
http://visualtw.ouvaton.org/VisualTW.html#EncryptedVaultPlugin
Works great for me!
Cheers,
David Szego
Reply all
Reply to author
Forward
0 new messages