command line encryption for win2k

[Andy Fish]

Hi,

I am looking for a command line encryption program for windows 2000 that can
be automated through a simple bat file or vbscript program so it doesn't
have to prompt the user for a password. Come to think of it, if I'm using
vbscript, I guess something that could be automated with COM would be good
too.

public key would be marginally better because then I wouldn't have to code a
password into the script. symmetrical would be fine though.

preferably free but at worst it should be pretty cheap ;-)

many thanks

Andy

 

[Benn Wolff]

Is this something you can use ?
Its part of the windows 2000 OS


Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\>cipher /?
Displays or alters the encryption of directories [files] on NTFS partitions.

CIPHER [/E | /D] [/S:dir] [/A] [/I] [/F] [/Q] [/H] [/K] [pathname [...]]

CIPHER /W:directory

/E Encrypts the specified directories. Directories will be marked
so that files added afterward will be encrypted.
/D Decrypts the specified directories. Directories will be marked
so that files added afterward will not be encrypted.
/S Performs the specified operation on directories in the given
directory and all subdirectories.
/A Operation for files as well as directories. The encrypted file
could become decrypted when it is modified if the parent
directory
is not encrypted. It is recommended that you encrypt the file and
the parent directory.
/I Continues performing the specified operation even after errors
have occurred. By default, CIPHER stops when an error is
encountered.
/F Forces the encryption operation on all specified objects, even
those which are already encrypted. Already-encrypted objects
are skipped by default.
/Q Reports only the most essential information.
/H Displays files with the hidden or system attributes. These
files are omitted by default.
/K Create new file encryption key for the user running CIPHER. If
this
option is chosen, all the other options will be ignored.
/W Removes data from available unused disk space on the entire
volume. If this option is chosen, all other options are ignored.
The directory specified can be anywhere in a local volume. If it
is a mount point or points to a directory in another volume, the
data on that volume will be removed.

dir A directory path.
pathname Specifies a pattern, file or directory.

Used without parameters, CIPHER displays the encryption state of
the current directory and any files it contains. You may use multiple
directory names and wildcards. You must put spaces between multiple
parameters.

C:\>

 

[John]

I am looking for a command line encryption program for windows 2000 that can
be automated through a simple bat file or vbscript program so it doesn't
have to prompt the user for a password. Come to think of it, if I'm using
vbscript, I guess something that could be automated with COM would be good
too.

public key would be marginally better because then I wouldn't have to code a
password into the script. symmetrical would be fine though.

preferably free but at worst it should be pretty cheap ;-)

many thanks

Andy

SafeGuard PrivateCrypto.

pcrypt -e crypted.uti -p password -n
pcrypt -o \outputdir -d crypted.uti -p password -n

There are more options of course.

Free for home use, pretty cheap for corporate use.

See http://www.privatecrypto.com

Yes, I work for Utimaco.

Groetjes
John

 

[Andy Fish]

Thanks john, I'll try it out

Andy

SafeGuard PrivateCrypto.

pcrypt -e crypted.uti -p password -n
pcrypt -o \outputdir -d crypted.uti -p password -n

There are more options of course.

Free for home use, pretty cheap for corporate use.

See http://www.privatecrypto.com

Yes, I work for Utimaco.

Groetjes
John

 

[Tom St Denis]

Free for home use, pretty cheap for corporate use.

Um gnupg? [dude, the phrases "cat out of the bag" and "dime-a-dozen" come to mind].

See http://www.privatecrypto.com

Yes, I work for Utimaco.

I notice you forgot to mention which MAC is used on the messages...

Or is it just that there is no MAC at all?

Tom

 

[Tom St Denis]

Thanks john, I'll try it out

You could if you don't mind casting away a huge portion of security.

A better alternatively would be... say.....use GNUPG !!!

Even if GNUPG is not to your liking you can just take the "freely"
available source code and mod it to your liking.

Tom

 

[John]

Free for home use, pretty cheap for corporate use.

Um gnupg? [dude, the phrases "cat out of the bag" and "dime-a-dozen" come to mind].

See http://www.privatecrypto.com

Yes, I work for Utimaco.

I notice you forgot to mention which MAC is used on the messages...

Or is it just that there is no MAC at all?

which messages?

Groetjes
John

 

[Tom St Denis]

Free for home use, pretty cheap for corporate use.

Um gnupg? [dude, the phrases "cat out of the bag" and "dime-a-dozen" come to mind].

See http://www.privatecrypto.com

Yes, I work for Utimaco.

I notice you forgot to mention which MAC is used on the messages...

Or is it just that there is no MAC at all?

which messages?

Um your software processes files right? Files are messages.

Also your site is f'ing annoying. What did some DeVry dropout design
it? [hint: disabling the back button on the browser is a sure fire
way to annoy viewers].

Tom

 

[John]

Um your software processes files right? Files are messages.

If an encrypted file is modified after encryption, decryption will not work.

Also your site is f'ing annoying. What did some DeVry dropout design
it? [hint: disabling the back button on the browser is a sure fire
way to annoy viewers].

Try hitting it (the back button) twice. That sometimes helps. I have no
trouble using the back button on our site using Mozilla.

Groetjes
John

 

[Damien]

Um your software processes files right? Files are messages.

If an encrypted file is modified after encryption, decryption will not work.

Also your site is f'ing annoying. What did some DeVry dropout design
it? [hint: disabling the back button on the browser is a sure fire
way to annoy viewers].

Try hitting it (the back button) twice. That sometimes helps. I have no
trouble using the back button on our site using Mozilla.

Groetjes
John

Please ask your website developers to use location.replace, instead of
other methods of redirecting. It doesn't screw up users history.

 

[Tom St Denis]

If an encrypted file is modified after encryption, decryption will not work.

Why not? How do you detect modifications? And no, "producing
garbage" as output is not an acceptable answer.

Also your site is f'ing annoying. What did some DeVry dropout design
it? [hint: disabling the back button on the browser is a sure fire
way to annoy viewers].

Try hitting it (the back button) twice. That sometimes helps. I have no
trouble using the back button on our site using Mozilla.

Or how about you tell your script kiddie web developer to stop messing
with the history? There is no reason to trap the user in the site
[cuz sometimes when you hit back it goes wicked fast so I have to
actually use the history menu to leave or just close the browser].

Point is... phew you guys stink!

Tom

 

[John]

Point is... phew you guys stink!

Thanks, Tom.

Not.

Bye Tom.

 

[John]

Please ask your website developers to use location.replace, instead of
other methods of redirecting. It doesn't screw up users history.

I will, thanks for the tip.

Groetjes,
John