Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
How To Put Password In Winrar
210 views
Skip to first unread message
Tristan Ridings
Dec 25, 2023, 10:59:42 AM12/25/23
to
I have a a file with important data that I want to password-protect. I basically want to be prompted for a password every time I try to open the file. I tried TrueCrypt but it doesn't seem to prompt for a password every time you try to open the file (well, unless I missed something).
how to put password in winrar
Download https://t.co/MClA6hrNWp
As a simple workaround, I decided to use WinRAR for this task (by adding a password to the archive). It works great and all but I have a little concern. Everytime I open a file with WinRAR it decompresses the file to a temporary folder. Now I'm worried that the data can be accessed in the temporary folder. I don't know if WinRAR deletes the content of the temporary folder later but even if this is the case the content can still be accessed by some utility (one of those utilities that allow you to view/save deleted files) so it doesn't seem like a secure option to me.
It has a "cache recently used passwords" option, so that if you mount your file, then un-mount it, the mount it again - it won't ask for the password the second time to save you time. You can (and by the sounds of things want to) turn this off, and which point it probably does what you want.
You could still use TrueCrypt if you want to have to type the password every time you use the file. Just create a volume with the secret file, mount it when you need to use it, and unmount it when you're done.
TrueCrypt asks you for the password when you mount the container. Of course, it defeats the purpose of encryption software if you mount it automatically, so mount it when you need to use it, then unmount afterwards.
A RAR file is a compressed archive that can contain hundreds of other files. RAR is popular because of how much the file size can be compressed, as well as the powerful encryption that is built-in. With just a few clicks, you can encrypt and password-protect any RAR archive. Without the correct password, unauthorized users won't even be able to see the names of the files it contains.
How I've solved this problem is to download a bat to exe program called "Advanced bat to exe converter" and I use command line below. I import also all winrar program files in program by using import "Embed Files" function.
For example if I use WinRAR to encrypt a file and put a password on the archive how secure is it? I keep a personal journal and am thinking of doing this, or is there a better way? It's just one huge .docx file.
So yes, the data is encrypted. This is only one of the elements of security, however. Another important element is how the key is derived from the password: what kind of key strengthening is performed? The slower the derivation of the key from the password, the more costly it is for an attacker to find the password (and hence the key) by brute force. A weak password is toast anyway, but good key strengthening can make the difference for a reasonably complex but still memorable password. WinRAR uses 262144 rounds of SHA-1 with a 64-bit salt, that's good key strengthening.
The de facto standard since you're using Windows was TrueCrypt. TrueCrypt provides a virtual disk which is stored as an encrypted file. Not only is this more secure than WinRAR (I trust TrueCrypt, which is written with security in mind from day 1, far more than any product whose encryption is an ancillary feature), it is also more convenient: you mount the encrypted disk by providing your password, then you can open files on the disk transparently, and when you've finished you unmount the encrypted disk.Sadly TrueCrypt is no longer in active development but it's successor VeraCrypt is. VeraCrypt is based on TrueCrypt and is compatible with the old TrueCrypt containers.
So yes, using password protection encrypts your file too. 7-Zip uses AES-256 encryption. Another approach to protect your files could be creating encrypted file (or disk) using TrueCrypt, where you can choose encryption algorithm that suits your needs.
You mention "docx" so I assume that you are on Office 2007 or 2010. The encryption mechanism implemented there is OK, you must make sure that your password is strong enough.In other words you do not need to use an external program to protect your file.
Yes, WinRAR encrypts the archive when a password is used. I personally recommend 7-Zip application as it offers more flexibility. Yes, what you write anywhere can incriminate you as long as it is legal for the court to use that as evidence. The court can use your personal journal/diary against you. I'm not a lawyer though.
Ok, long story short, I'm currious how long it would take an agency to crack a 10-15 character winrar password. The file names in the archive are also scrambled including a word at the start and numbers and characters. Roughly, should I have reason to believe this could be cracked within a reasonable time frame?
Then it depends, not on the length of your password, but on the way you produced it. It's not the length which makes the password strong, but the randomness. If your password is a sequence of 15 random characters, chosen uniformly and independently of each other, then it will resist forever. If it is a common English word which happens to be 15 characters long, then it is toast and will be recovered in a matter of seconds.
I'll try and make this as short as i can. I'm looking for a .bat file to rar up and password folders with files in them, but the problem is a little more tricky than i thought, each folder can have anything from 1 to 400 files in it, i have two .txt files, one with the desired number of.rar file names and one with the desired number of .rar passwords, so txt doc's look like this, first is filenames.txt:
What I want to do is apply the 1st list of 50 file names in the .txt document to 50 sub folders sat within a main folder, and the 1st list of 50 passwords to be used for each of those .rar's created, so my end result would be > inside 1st main folder 50 rars each passworded differently, I also want the .rar files passwords to be encrypted so you cannot see the contents of the any .rar file unless you enter the password.
I created file names & password lists to help with the process of generating the passworded rar files, but if you can do it without needing predefined password/file name lists then that would be less work to do, but i would need some sort of file name / password list creating by the .bat file so i know what .rar has what password.
Basically I'm looking for it to take a group of folders and rar them up individually in some form of alphabetical order and apply random passwords to the rar's (these passwords should be 20 characters long and contain numbers and upper/lower case letters), but i want the rar encrypting which is an option in winRAR which stops users seeing contents of the rar until a password is entered
the password file is read by one of the commands in the inner loop's body, namely SET /P. SET /P reads the standard input stream, which is the console by default, but the standard input in this case is redirected for the entire inner loop to be from the passwords.txt instead.
Note that you could generate the passwords in a similar way. If there's a single command that accepts the output file name as a parameter and just does the job without interruptions, you could insert that command just after the DIR.
Brute-force attacks take ages. One thing is that I found out that brute force attacking tries every combination of words from the word-list. Therefore, I would like to know if it is possible to brute force attack the file using individual passwords one-by-one, instead of going through all possible permutations of all the individual passwords contained in my word-list.
In the movies, sometimes you see people "cracking" a password.They try all possibilities for the first letter,and then when they get the first letter right,they try all the possibilities for the second letter, etc.Eventually all the letters fill in, and the then the actor has the whole password.
It doesn't work like the movies with AES. AES passwords are all-or-nothing. If you get all-but-one of the letters right when typing in your password, you get exactly the same "failed" message as if you typed in a completely wrong password.(It's not possible to distinguish the random-looking gibberish from decoding with an almost-correct key from other random-looking gibberish from decoding with a completely wrong key).It's not possible to tell if one guess is "closer" to the right password than another guess.
There are various "password unlocker" programs that will try one guess at a time until they stumble on the correct WinRar password.If the person who made the password-protected WinRar file picked a "strong" password -- for example, a passphrase of 8 words randomly chosen using dice from a short dictionary -- we expect that it will take more than a thousand years to stumble across the correct password.If that person picked a "very weak" password -- such as a single word in the dictionary, or a single dictionary word followed by a single digit, or a single word repeated 8 times, or a sequence of 5 completely random characters -- we expect that it will take less than a day for that program to run through all those very weak passwords and find the correct one.
I agree with Thomas. It's probably hopeless trying to crack it without knowing anything about the password.If you do find a way to crack AES, Bruce Schnier, the readers of crypto stackexchange, and every other cryptographer on the planet would be fascinated to find out, especially those cryptographers who work at the SVR, the NSA, and other intelligence agencies.
On file hosting platforms uploaders tend to use one password for all files they upload. So on huge file-sharing forums there are not as many possible passwods as files but as many possible passwords as users. That reduces the set of passwords that are very likely to be correct to a few hundred. And I'd bet someone collects all these passwords and makes them available.
As long as you recently downloaded the file all the pages that finally led you to the download-link are still in your browsers history. Uploading something password-protected and meant for the public without providing the password at some central place is nonsense. Therefore, the password should be on one of these webpages in your browser-history.
0aad45d008
how to put password in winrar
Download https://t.co/MClA6hrNWp
As a simple workaround, I decided to use WinRAR for this task (by adding a password to the archive). It works great and all but I have a little concern. Everytime I open a file with WinRAR it decompresses the file to a temporary folder. Now I'm worried that the data can be accessed in the temporary folder. I don't know if WinRAR deletes the content of the temporary folder later but even if this is the case the content can still be accessed by some utility (one of those utilities that allow you to view/save deleted files) so it doesn't seem like a secure option to me.
It has a "cache recently used passwords" option, so that if you mount your file, then un-mount it, the mount it again - it won't ask for the password the second time to save you time. You can (and by the sounds of things want to) turn this off, and which point it probably does what you want.
You could still use TrueCrypt if you want to have to type the password every time you use the file. Just create a volume with the secret file, mount it when you need to use it, and unmount it when you're done.
TrueCrypt asks you for the password when you mount the container. Of course, it defeats the purpose of encryption software if you mount it automatically, so mount it when you need to use it, then unmount afterwards.
A RAR file is a compressed archive that can contain hundreds of other files. RAR is popular because of how much the file size can be compressed, as well as the powerful encryption that is built-in. With just a few clicks, you can encrypt and password-protect any RAR archive. Without the correct password, unauthorized users won't even be able to see the names of the files it contains.
How I've solved this problem is to download a bat to exe program called "Advanced bat to exe converter" and I use command line below. I import also all winrar program files in program by using import "Embed Files" function.
For example if I use WinRAR to encrypt a file and put a password on the archive how secure is it? I keep a personal journal and am thinking of doing this, or is there a better way? It's just one huge .docx file.
So yes, the data is encrypted. This is only one of the elements of security, however. Another important element is how the key is derived from the password: what kind of key strengthening is performed? The slower the derivation of the key from the password, the more costly it is for an attacker to find the password (and hence the key) by brute force. A weak password is toast anyway, but good key strengthening can make the difference for a reasonably complex but still memorable password. WinRAR uses 262144 rounds of SHA-1 with a 64-bit salt, that's good key strengthening.
The de facto standard since you're using Windows was TrueCrypt. TrueCrypt provides a virtual disk which is stored as an encrypted file. Not only is this more secure than WinRAR (I trust TrueCrypt, which is written with security in mind from day 1, far more than any product whose encryption is an ancillary feature), it is also more convenient: you mount the encrypted disk by providing your password, then you can open files on the disk transparently, and when you've finished you unmount the encrypted disk.Sadly TrueCrypt is no longer in active development but it's successor VeraCrypt is. VeraCrypt is based on TrueCrypt and is compatible with the old TrueCrypt containers.
So yes, using password protection encrypts your file too. 7-Zip uses AES-256 encryption. Another approach to protect your files could be creating encrypted file (or disk) using TrueCrypt, where you can choose encryption algorithm that suits your needs.
You mention "docx" so I assume that you are on Office 2007 or 2010. The encryption mechanism implemented there is OK, you must make sure that your password is strong enough.In other words you do not need to use an external program to protect your file.
Yes, WinRAR encrypts the archive when a password is used. I personally recommend 7-Zip application as it offers more flexibility. Yes, what you write anywhere can incriminate you as long as it is legal for the court to use that as evidence. The court can use your personal journal/diary against you. I'm not a lawyer though.
Ok, long story short, I'm currious how long it would take an agency to crack a 10-15 character winrar password. The file names in the archive are also scrambled including a word at the start and numbers and characters. Roughly, should I have reason to believe this could be cracked within a reasonable time frame?
Then it depends, not on the length of your password, but on the way you produced it. It's not the length which makes the password strong, but the randomness. If your password is a sequence of 15 random characters, chosen uniformly and independently of each other, then it will resist forever. If it is a common English word which happens to be 15 characters long, then it is toast and will be recovered in a matter of seconds.
I'll try and make this as short as i can. I'm looking for a .bat file to rar up and password folders with files in them, but the problem is a little more tricky than i thought, each folder can have anything from 1 to 400 files in it, i have two .txt files, one with the desired number of.rar file names and one with the desired number of .rar passwords, so txt doc's look like this, first is filenames.txt:
What I want to do is apply the 1st list of 50 file names in the .txt document to 50 sub folders sat within a main folder, and the 1st list of 50 passwords to be used for each of those .rar's created, so my end result would be > inside 1st main folder 50 rars each passworded differently, I also want the .rar files passwords to be encrypted so you cannot see the contents of the any .rar file unless you enter the password.
I created file names & password lists to help with the process of generating the passworded rar files, but if you can do it without needing predefined password/file name lists then that would be less work to do, but i would need some sort of file name / password list creating by the .bat file so i know what .rar has what password.
Basically I'm looking for it to take a group of folders and rar them up individually in some form of alphabetical order and apply random passwords to the rar's (these passwords should be 20 characters long and contain numbers and upper/lower case letters), but i want the rar encrypting which is an option in winRAR which stops users seeing contents of the rar until a password is entered
the password file is read by one of the commands in the inner loop's body, namely SET /P. SET /P reads the standard input stream, which is the console by default, but the standard input in this case is redirected for the entire inner loop to be from the passwords.txt instead.
Note that you could generate the passwords in a similar way. If there's a single command that accepts the output file name as a parameter and just does the job without interruptions, you could insert that command just after the DIR.
Brute-force attacks take ages. One thing is that I found out that brute force attacking tries every combination of words from the word-list. Therefore, I would like to know if it is possible to brute force attack the file using individual passwords one-by-one, instead of going through all possible permutations of all the individual passwords contained in my word-list.
In the movies, sometimes you see people "cracking" a password.They try all possibilities for the first letter,and then when they get the first letter right,they try all the possibilities for the second letter, etc.Eventually all the letters fill in, and the then the actor has the whole password.
It doesn't work like the movies with AES. AES passwords are all-or-nothing. If you get all-but-one of the letters right when typing in your password, you get exactly the same "failed" message as if you typed in a completely wrong password.(It's not possible to distinguish the random-looking gibberish from decoding with an almost-correct key from other random-looking gibberish from decoding with a completely wrong key).It's not possible to tell if one guess is "closer" to the right password than another guess.
There are various "password unlocker" programs that will try one guess at a time until they stumble on the correct WinRar password.If the person who made the password-protected WinRar file picked a "strong" password -- for example, a passphrase of 8 words randomly chosen using dice from a short dictionary -- we expect that it will take more than a thousand years to stumble across the correct password.If that person picked a "very weak" password -- such as a single word in the dictionary, or a single dictionary word followed by a single digit, or a single word repeated 8 times, or a sequence of 5 completely random characters -- we expect that it will take less than a day for that program to run through all those very weak passwords and find the correct one.
I agree with Thomas. It's probably hopeless trying to crack it without knowing anything about the password.If you do find a way to crack AES, Bruce Schnier, the readers of crypto stackexchange, and every other cryptographer on the planet would be fascinated to find out, especially those cryptographers who work at the SVR, the NSA, and other intelligence agencies.
On file hosting platforms uploaders tend to use one password for all files they upload. So on huge file-sharing forums there are not as many possible passwods as files but as many possible passwords as users. That reduces the set of passwords that are very likely to be correct to a few hundred. And I'd bet someone collects all these passwords and makes them available.
As long as you recently downloaded the file all the pages that finally led you to the download-link are still in your browsers history. Uploading something password-protected and meant for the public without providing the password at some central place is nonsense. Therefore, the password should be on one of these webpages in your browser-history.
0aad45d008
0 new messages