Category Archives: Apple

Securing Dropbox

Posted on by
3

After the well publicised Dropbox security failings, I started searching for a solution which would allow me to encrypt private data held in my Dropbox while still having easy access to it from my personal Mac.

I could create a Mac encrypted disk image but this would be unwieldy to manage and probably result in large file updates whenever any of the contents were changed.

A more elegant technical solution is to create an encrypted user-space filesystem. It’s a bit more work to setup and you will need a combination of tools, but it does allow for a much more flexible and manageable configuration.

Instructions:

/usr/bin/ruby -e "$(curl -fsSL https://raw.github.com/gist/323731)"
  • Install Apple Xcode – this can be downloaded from the Apple Developer site
  • Install the latest EncFS encrypted filesystem (v1.7.4 at time of writing):
sudo brew install encfs

I want to make this installation as secure as possible so I’m not going to store the EncFS key file on Dropbox. To accomplish this I use a neat trick.

We’re going to create a new encrypted volume, but do this locally first so the EncFS key is never synchronised with Dropbox:

encfs ~/Desktop/Secure ~/Documents/DropSec

Answer ‘yes’ when prompted to create the new folders and choose ‘p’ for pre-configured paranoia mode (256-bit AES encryption). Enter a secure password when prompted and you’re done.

Now the filesystem has been created we can deal with the key.

umount ~/Documents/DropSec
mkdir ~/.encfskeys
mv ~/Desktop/Secure/.encfs6.xml ~/.encfskeys/dropsec.xml

Remove the /usr/local/bin/encfs symbolic link …

rm /usr/local/bin/encfs

… and replace with a simple wrapper script.

Use a text editor to create the following script:

#!/bin/sh
# Wrapper to EncFS
REALENCFS="/usr/local/Cellar/encfs/1.7.4/bin/encfs"
MYUSER=`whoami`
export ENCFS6_CONFIG="/Users/${MYUSER}/.encfskeys/dropsec.xml"
$REALENCFS "$@"

Don’t forget to make the new wrapper script executable:

chmod 555 /usr/local/bin/encfs

Create a dummy key to ensure that the Macfusion plugin will recognise the EncFS volume:

touch ~/Desktop/Secure/.encfs6.xml

Now move the entire ~/Desktop/Secure folder into your Dropbox:

mv ~/Desktop/Secure ~/Dropbox/

To check the secure volume settings use:

ENCFS6_CONFIG="/Users/youruser/.encfskeys/dropsec.xml" encfsctl info ~/Dropbox/Secure

To change your secret password use:

ENCFS6_CONFIG="/Users/youruser/.encfskeys/dropsec.xml" encfsctl passwd ~/Dropbox/Secure

Use the Macfusion GUI to mount and unmount the volume when you need it.

  • The EncFS Raw Path is /Users/youruser/Dropbox/Secure
  • The Passphrase is the password you gave when you created your EncFS volume
  • The Mount Point is the local (unencrypted) folder where you access your secure folder (in this example we have used /Users/youruser/Documents/DropSec)

You should now have an encrypted volume in your Dropbox which you access via your local ~/Documents/DropSec mount.

The security of the ~/.encfskeys/dropsec.xml key file is of paramount importance. This is the EncFS decryption key which must stay in that folder. If you delete this file then all your encrypted data is gone forever, so keep a secure backup somewhere else just in case.

UPDATE: Read this post for a new method of creating a secure Dropbox folder.

MacBook keyboard not working?

Posted on by
2

A couple of times now I’ve found that the keyboard on my MacBook has stopped responding.

This wasn’t a hardware failure, it turned out it was due to ‘Mouse Keys’ being enabled.

Mouse Keys is a setting which allows you to control the mouse with the keyboard. It is accidentally enabled by pressing the Option (alt) key five times in a row.

To switch it off again press the Option (alt) key five times.

To disable it permanently go to the Universal Access preferences and un-tick ‘Press the Option key five times to turn Mouse Keys on or off‘.

System Preferences > Universal Access > Mouse & Trackpad

For more details on Mouse Keys see this Apple Support article – Unable to type while Mouse Keys is enabled in Mac OS X

Google Calendars not visible on Android device

Posted on by
2

Have you added a Google calendar and it’s not showing up on your Android device?

Try this:

Go to Settings > Applications > Manage Applications > All

Then:

Calendar > Clear data

Calendar Storage > Clear data

Google Calendar Sync > Clear data

Then go into Accounts & sync and perform a Sync now

Your new calendar should now be visible on the device.

If you’re also syncing an iPhone, go to http://m.google.com/sync from your iPhone and select which calendars will be visible on the device.

iCloud Legal Information

Posted on by
Reply

Logging into iTunes Connect today I was unexpectedly greeted with this message:

 

 

I’m still looking for the ‘What does this question even mean?’ option.

I dread to think what might happen if I dare to answer Yes!

Tell EvoCam to start recording

Posted on by
Reply

A quick AppleScript which can be used in EvoCam to tell it to start recording on startup (useful in unattended recording setups):

tell application "EvoCam"
 start recording webcam 1
end tell
 

Set this in EvoCam > Options > AppleScript Settings… > When opening EvoCam