Manual VeraCrypt 1.16 (page 41 of 162) (English)

658731

Zoom out

Zoom in

1/162

If you want to mount an outer volume and protect a hidden volume within using cached passwords,

then follow these steps: Hold down the Control (Ctrl) key when clicking Mount (or select Mount with

Options from the Volumes menu). This will open the Mount Options dialog. Enable the option

‘Protect hidden volume against damage caused by writing to outer volume’ and leave the password

box empty. Then click OK.

If you need to mount an outer volume and you know that you will not need to save any data to it,

then the most comfortable way of protecting the hidden volume against damage is mounting the

outer volume as read-only (see the section Mount Options).

Security Requirements and Precautions Pertaining to Hidden Volumes

If you use a hidden VeraCrypt volume, you must follow the security requirements and precautions

listed below in this section. Disclaimer: This section is not guaranteed to contain a list of all security

issues and attacks that might adversely affect or limit the ability of VeraCrypt to secure data stored

in a hidden VeraCrypt volume and the ability to provide plausible deniability.



If an adversary has access to a (dismounted) VeraCrypt volume at several points over time, he

may be able to determine which sectors of the volume are changing. If you change the

contents of a hidden volume (e.g., create/copy new files to the hidden volume or

modify/delete/rename/move files stored on the hidden volume, etc.), the contents of sectors

(ciphertext) in the hidden volume area will change. After being given the password to the outer

volume, the adversary might demand an explanation why these sectors changed. Your failure

to provide a plausible explanation might indicate the existence of a hidden volume within the

outer volume.

Note that issues similar to the one described above may also arise, for example, in the

following cases:

The file system in which you store a file-hosted VeraCrypt container has been

defragmented and a copy of the VeraCrypt container (or of its fragment) remains in the

free space on the host volume (in the defragmented file system). To prevent this, do

one of the following:

•

Use a partition/device-hosted VeraCrypt volume instead of file-hosted.

•

Securely erase free space on the host volume (in the defragmented file system)

after defragmenting. On Windows, this can be done using the Microsoft free

utility SDelete. On Linux, the shred utility from GNU coreutils package can be

used for this purpose.

•

Do not defragment file systems in which you store VeraCrypt volumes.

A file-hosted VeraCrypt container is stored in a journaling file system (such as NTFS).

A copy of the VeraCrypt container (or of its fragment) may remain on the host volume.

To prevent this, do one the following:

•

Use a partition/device-hosted VeraCrypt volume instead of file-hosted.

•

Store the container in a non-journaling file system (for example, FAT32).

A VeraCrypt volume resides on a device/filesystem that utilizes a wear-leveling

mechanism (e.g. a flash-memory SSD or USB flash drive). A copy of (a fragment of) the

VeraCrypt volume may remain on the device. Therefore, do not store hidden volumes on

such devices/filesystems. For more information on wear-leveling, see the section

Wear-

Leveling in the chapter Security Requirements and Precautions.

A VeraCrypt volume resides on a device/filesystem that saves data (or on a

device/filesystem that is controlled or monitored by a system/device that saves data)

Report abuse

Libble takes abuse of its services very seriously. We're committed to dealing with such abuse according to the laws in your country of residence. When you submit a report, we'll investigate it and take the appropriate action. We'll get back to you only if we require additional details or have more information to share.

Product:

Forumrules

To achieve meaningful questions, we apply the following rules:

First, read the manual;
Check if your question has been asked previously;
Try to ask your question as clearly as possible;
Did you already try to solve the problem? Please mention this;
Is your problem solved by a visitor then let him/her know in this forum;
To give a response to a question or answer, do not use this form but click on the button 'reply to this question';
Your question will be posted here and emailed to our subscribers. Therefore, avoid filling in personal details.

new questions and answers
new manuals

You will receive an email to register for one or both of the options.

Get your user manual by e-mail

Enter your email address to receive the manual of VeraCrypt 1.16 in the language / languages: English as an attachment in your email.

The manual is 2,98 mb in size.

You will receive the manual in your email within minutes. If you have not received an email, then probably have entered the wrong email address or your mailbox is too full. In addition, it may be that your ISP may have a maximum size for emails to receive.

The manual is sent by email. Check your email

If you have not received an email with the manual within fifteen minutes, it may be that you have a entered a wrong email address or that your ISP has set a maximum size to receive email that is smaller than the size of the manual.

The email address you have provided is not correct.

Please check the email address and correct it.

Your question is posted on this page

Would you like to receive an email when new answers and questions are posted? Please enter your email address.

Info

VeraCrypt 1.16 Manual

Product: