So how to install VeraCrypt (safely) on Ubuntu 14.04?
Here is a short video tutorial, or you can follow a slightly more lengthy tutorial that includes the verification process.
1. go to VeraCrypt homepage: https://veracrypt.codeplex.com/
2. click downloads
Verify the integrity of the downloaded file
3. select the Linux stable version for your operating system. At the time of writing, I was downloading VeraCrypt Linux Setup 1.0f-2 version (uploaded on Apr 6, 2015)
4. download PGP Signature of VeraCrypt Linux Setup 1.0f-2 and verify the integrity of the downloaded file
$ cd Downloads $ wget https://www.idrix.fr/VeraCrypt/VeraCrypt_PGP_public_key.asc $ gpg --with-fingerprint VeraCrypt_PGP_public_key.asc
output should look something like this:
pub 4096R/54DDD393 2014-06-27 VeraCrypt Team <email@example.com> Key fingerprint = 993B 7D7E 8E41 3809 828F 0F29 EB55 9C7C 54DD D393
next, import VeraCrypt PGP public key
$ gpg --import VeraCrypt_PGP_public_key.asc $ gpg --verify veracrypt-1.0f-2-setup.tar.bz2.sig veracrypt-1.0f-2-setup.tar.bz2
output should be similar to this one:
gpg: Signature made Mon 6 Apr 2015 20:16:07 CEST using RSA key ID 54DDD393 gpg: Good signature from "VeraCrypt Team <firstname.lastname@example.org>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 993B 7D7E 8E41 3809 828F 0F29 EB55 9C7C 54DD D393
$ cd Downloads $ sha256sum veracrypt-1.0f-2-setup.tar.bz2
output should look like this:
$ sha512sum veracrypt-1.0f-2-setup.tar.bz2
output should look like this:
Now, you can check both of them visually against the checksums in the veracrypt-1.0.f-2-sha256sum.txt and veracrypt-1.0.f-2-sha512sum.txt, or if you are not in the mood of meticulously comparing every single digit, you can use the following methods suggested here.
Method 1. Comparing 2 files
Go to Terminal and type:
$ echo 7365e006f2e62e3bc6f0e85d682c2e9703bc5e1bf2d824cb1404b76d38ab6e00 > original.sha256 $ sha256sum veracrypt-1.0f-2-setup.tar.bz2 > comp.sha256 $ ls comp.sha256 original.sha256 veracrypt-1.0f-2-setup.tar.bz2
remove the veracrypt-1.0f-2-setup.tar.bz2 part from the comp.sha256 file with nano
$ nano comp.sha256
to write out press ctrl + O and Enter
to exit nano press ctrl + X
now, to compare 2 files type:
$ diff -q original.sha256 comp.sha256
if there is no output, this means that both files are identical, they don’t differ.
You can check it by modifying the comp.sha256 file with nano again and the output would look like this:
$ diff -q original.sha256 comp.sha256 Files original.sha256 and comp.sha256 differ
Method 2. Check it with onlinemd5.com
Unpacking the verified archive
In Terminal go to your Downloads and create a new VeraCrypt folder:
$ cd Downloads $ mkdir VeraCrypt
Our verified archive is in Downloads and we want to extract its contents into the newly created directory.
$ cd Downloads $ tar xjvf veracrypt-1.0f-2-setup.tar.bz2 -C ~/Downloads/VeraCrypt/
cd to VeraCrypt and execute veracrypt-1.0f-2-setup-gui-x64 (for 64-bit) or veracrypt-1.0f-2-setup-gui-x86 (for 32-bit)
$ cd VeraCrypt $ ./veracrypt-1.0f-2-setup-gui-x64
Next, follow the installation instructions via GUI.
After the installation has finished, you can check the version of the installed program with the following command:
$ veracrypt --version
To run the program, simply write:
I hope this helps! Nevertheless, despite the comforting feeling of security, one should always bear in mind the last words of Julius Ceasar: