I Need Some Help: Workaround Stopping Truecrypt From Leaking

2 points

12 years ago

Some days ago I posted here my blog article http://querbalken.net/workaround-truecrypt-leaking-containers-security-issue-en.html and the goal, an open source-project to work around: https://github.com/tverrbjelke/truecrypt_wrapper

Installing truecrypt via dowload package just results in a leaking mess: All your recently used containerfiles will be leaked into file ~/.local/share/recently-used.xbel

Started to create a practicable workaround mini open source project: wrapper and documentation that guides through the issue.

My last post here got me some good replies. Summarizing one: "truecrypt binary has no s-bit set, so set the bookmarking-file to readonly and you be done."

Did that. But that won't help! (see session below)

Maybe I have major blind spots (hope so, then we could close the issue and live on - so please find my mistakes). If not, then we indeed have a leaking mess that needs workaround.

So please help me here:

Can you try below session on different platforms with different desktop environments (truecrypt as I know links to GTK)

I have tried this on my up to date KUbuntu12.04LTS (with KDE) and the downloaded truecrypt-installer. Same shit happens with different versions of truecrypt, doesn't seem to matter. Because the open-file dialog does the leaking and that is desktop stuff.

Next thing I would like do is set up a clean virtual machine with e.g. opensuse (which also aims average joe). But right now I cought a flew and should treat my fiever and recover a bit...

So is there something I am overlooking?

Please can you support me and try this on different platforms / Desktop environments? Maybe you reply here or as issue into my github project or as comment in my blog...? And maybe you also have some hints where to go then...

1) workaround, well placed to be found by soluiton seeking average joe

2) fix of leaking truecrypt

here comes the session:

5 comments