One of the features provided by p7zip is header encryption, to encrypt the filenames of the files when using the built in AES.
I ran a few tests with 7zX and I discovered that header encryption is off by default, and there is no easy way to enable it. It was easy for me to recover the file names of every encrypted file simply by opening the 7z in a hex editor.
For my personal use, I enabled header encryption by entering "-mhe=on" (without the quotes, of course) in the "Additional Parameters" field, which is the 7za commandline switch to enable header encryption.
Would it be possible for future versions of 7zX to enable this switch by default whenever encryption is used? Revealing the file names of every encrypted file is certainly not optimal behavior, and there are already features built into p7zip to alleviate this problem.
Header encryption
(2 posts) (2 voices)
-
Header encryption is currently not used by default in 7-Zip, and 7zX conforms to that design choice. Entering -mhe=on in the Additional parameters field remains the only way to enable this feature, at least for another while.
Thanks for your report.
Posted 3 years ago #
Reply
You must log in to post.