Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

 Encrypted files using Cygwin and OpenSSL

Using Cygwin, the free open-source terminal emulator, in coordination with OpenSSL, you can create cross-platform encrypted files. The files created using Cygwin can be exported using mobile media including thumb drives, CDs, external hard drives, etc. Cygwin and OpenSSL are bundled in the download of Cygwin. The following tutorial (although demonstrated using Windows Vista) can be applied to Windows XP, Linux, and Mac OS.

Download Cygwin from the project homepage. Cygwin is the executable located approximately half-way down the page.

Double-click setup.exe to begin the installation and click Next.

Sponsored Content

Say Goodbye to Traditional PC Lifecycle Management

Traditional IT tools, including Microsoft SCCM, Ghost Solution Suite, and KACE, often require considerable custom configurations by T3 technicians (an expensive and often elusive IT resource) to enable management of a hybrid onsite + remote workforce. In many cases, even with the best resources, organizations are finding that these on-premise tools simply cannot support remote endpoints consistently and reliably due to infrastructure limitations.

Choose Install from Internet and click Next.

Leave the installation directory as C:’cygwin and leave the Default Text File Type set as Unix/binary and click Next.

Change the local package directory path to C:’Users’USERNAME’ and click Next.

On the Select Your Internet Connection dialog, select Direct Connection and click Next.

Select a mirror and click Next.

Untie the “Net” tab, double-click openssl and click Next.

It will take a few minutes for Cygwin to install.

Leave the default icon selections and click Finish.

Congratulations, the installation of Cygwin is complete. Double-click the icon on your desktop to launch Cygwin.

Cygwin will create several personalization files and will launch the default window (shown below).

In order to create an encrypted version of a file enter the following command:

​openssl des3 -salt -in UnencryptedFile.html -out EncryptedFile.html.des3

Replace “unencryptedFile.html” with the name of a file you would like to encrypt. OpenSSL will prompt you to create a password for the file.

You will now notice an encrypted version of your file was created in the same directory and named “EncryptedFile.html.des3.” If you try to open this file without first entering the password, you will get incoherent output. To decrypt your file, enter the following command:

​openssl des3 -d -salt -in EncryptedFile.html.des3 -out NewUnencryptedFile.html

OpenSSL will once again prompt you to enter your password. Upon successful authentication, OpenSSL will create a new, decrypted version of your file in the same directory.

Once your file is encrypted, you can transport the file onto portable media in the same way that you would transfer any other file. You will be able to decrypt your file on any computer with OpenSSL installed including Linux, Windows Vista or Windows XP, or Mac OS.

Related Articles

Recent Security Forum threads

Got a question? Post it on our Security Forums!

Related Topics:

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: