NAILLONWORKS FILELOCK SHAREWARE VERSION Installation and User's Manual COPYRIGHT (c) 1993 NAILLONWORKS PROGRAMMING DOUBLESPACE, DOS 6.0\6.2, MS-DOS, are registered to the MICROSOFT CORPORATION INDEX TO NAILLONWORKS FILELOCK TOPICS INTRODUCTION------------------------------------------------------ 1 SYSTEM REQUIREMENTS----------------------------------------------- 1 INSTALLATION------------------------------------------------------ 2 PRECAUTIONS------------------------------------------------------- 1 CONFIGURING NW-FILELOCK TO RUN FROM FLOPPY------------------------ 2 ENTERING YOUR NAME AND PASSWORD----------------------------------- 3 CHANGING YOUR PASSWORD-------------------------------------------- 5 LISTING USERNAMES------------------------------------------------- 3 VIEWING DIRECTORIES AND SUB-DIRECTORIES--------------------------- 6 SECURING A FILE--------------------------------------------------- 5 ENCRYPTING A FILE------------------------------------------------- 5 RELEASING A FILE-------------------------------------------------- 6 RELEASING A FILE WITHOUT DECRYPTING IT---------------------------- 6 PASSWORD PROTECTING AN ENCRYPTED FILE FOR REMOTE SECURITY--------- 6 IMPORTING A PASSWORD PROTECTED FILE FOR DECRYPTION---------------- 7 PROCESSING FILES WITH LONG PATHS---------------------------------- 5 RELEASING FILES TO ALTERNATE PATHS-------------------------------- 6 REMOVING A USER FROM REGISTRY------------------------------------- 4 RESETTING NW-FILELOCK--------------------------------------------- 7 REMOVING NAILLONWORKS FILELOCK FROM YOUR SYSTEM------------------- 7 CONTACTING NAILLONWORKS PROGRAMMING------------------------------- 8 ORDER FORM-------------------------------------------------------- 8 WARRANTY-----------------------------------------------------------9 -------------------------------PAGE 1------------------------------- ABOUT FILELOCK Naillonworks Filelock has been designed to give the PC user the ability to maintain control over file privacy and security on systems or networks that are accessible to other users. It will also benefit PC-users with the task of transmitting sensitive data via modems and to electronic mail boxes, which have been known to fall prey to prying eyes. NW-Filelock is a multiple user platform. This means it allows many different users to register individual passwords with the system. They are then allowed to free files that they have secured with their name password combination. Any attempt to unlock a file that has been secured by a different user will be met with an error message. The encryption engine in NW-Filelock has been designed to process text and image files as well as compiled code such as .com and .exe files. The system allows for different levels of security. It allows the users to secure a file to a tamper resistant directory, and offers the option of encrypting the file with a rock solid encryption engine. The user may also wish, after encryption, to release a file from the secure directory without decrypting it. NW-FILELOCK will give the user the opportunity to embed a password into the encrypted file, allowing the file to be decrypted in the future by NW-Filelock. This option is useful to modem users wishing to transmit files to other NW-Filelock copy holders. SYSTEM REQUIREMENTS IBM COMPATIBLE personal computer, 512k ram, EGA monitor, DOS 3.0 and and above. A Hard drive is required for storage of files secured by NW-Filelock, but the program can be configured to operate on a floppy disk, as long as no file to be processed exceeds the space limits of the disk. The program is compatible with DOUBLESPACE under MICROSOFT'S DOS 6.0/6.2 and was developed on a compressed drive. This program uses virtual memory for it's file operations, and will not become memory resident. This allows the use of NW-Filelock on systems with limited system resources and no extended memory. Mice are not supported in the NW-Filelock operating program, although the shareware intro screen and order form do. The operating program was specifically designed for minimum size giving the user the option of running this security program on a floppy drive. This necessitated the exclusion of the mouse. The registered version of this program will only occupy approximately 140,000 bytes of disk space, fully installed. WORDS OF CAUTION NW-Filelock encorporates extensive data manipulation and record keeping to accomplish its' task. At different times during processing, files are disassembled and dissected. It is during these procedures that your files run the greatest risk of being lost to power interrupts, system failures etc. Also, any attempt to pry into the tamper resistant directory or program files may render your current NW-Filelock setup inoperative, hindering NW-FILELOCK's ability to restore processed files to their original condition. Any user is free to access any file contained in the FILEHLDR subdirectory, as this is not a secure directory. Altering files that have been encrypted and password protected may cause them to be irretrievable. They can be copied and transmitted however. Keep copies of any file that you cant afford to lose in a safe place, off of the computer system. After all, this is good computing practice. NAILLONWORKS PROGRAMMING assumes no liability for lost or damaged data with this version of NW-filelock 1.0. Nor can we provide support to -------------------------------PAGE 2------------------------------- nonregistered users. Do not attempt to print the code generated by NW-Filelock. Your printer is going to process some characters as control characters and produce unexpected results. You may distribute and use unlimited copies of NAILLONWORKS FILELOCK VERSION 1.0 in unlimited quantities and on as many computer systems as you wish, provided that the files NWMANUAL.TXT, NWVENDOR.TXT, ID.DAT and READFRST.TXT are all included in unaltered condition on any distribution diskette or in any compressed file format. INSTALLING NAILLONWORKS FILELOCK Before you go any further, if you have not already done so, please make a copy of the distribution diskette or compressed distribution file, and keep it in a safe place. If you recieved NW-FILELOCK 1.0, shareware version, in compressed form, copy all program files to the **ROOT DIRECTORY!** of a floppy disk or your hard disk, change your current directory to that drive, (EXAMPLE-- if you expanded to the a: drive, at the DOS prompt type A: and hit enter, then type cd\and hit enter.) Then type INSTALL and hit enter. If you recieved it on disk, you should be able to select the root directory of that drive, and type INSTALL. If the program files are not in the root directory, copy them there before you attempt to install the program. If the floppy is not large enough for this, copy them to the root directory of another floppy, or to the root directory of your hard disk. Once you have activated the INSTALL program, you will see a welcome banner and a list of options below. If you want to install NW-FILELOCK use the spacebar to toggle to the CONFIGURE option and press enter. Read all instructions carefully and you should have a running copy of this program in short order. Don't attempt to manually copy the files to your computer because it is necessary for the INSTALL program to create and configure the necessary support files for the program to run. NW-Filelock can also be configured to run off of a floppy disk. If you choose to configure the program to run off floppy, be cautious of the space limitations. Processing of a file could be interrupted by a DISK FULL error message. With this in mind, configuration for floppy use is handled in much the same manner as a hard drive configuration, with these special instructions. NW-Filelock can configure itself to run off of the same disk used for installation. Obviously, the larger the floppy capacity you have to hold NW-Filelock the better. I would recommend copying all of the NW-FILELOCK files, including .TXT files, to a high density floppy such as a 1.2 or 1.44 meg, if your system is not limited to low density. If you use MICROSOFT's DOS 6.0 or 6.2 you can take advantage of the increased space these operating systems can give your floppy with DOUBLESPACE. To configure the program to run off of the installation diskette, type the letter of the drive you are running the installation from, and when prompted for the letter of the drive to contain NW-Filelock, type the same letter again. Make sure that the disk has at least as much free space on it as the program files occupy. After this process is complete, delete all of the files remaining in the ROOT DIRECTORY of the floppy, to increase the storage capacity of the disk. DO NOT DELETE ANY FILE OR SUBDIRECTORY THAT RESIDES UNDER THE NEW NW-LOCK DIRECTORY ON THE FLOPPY or your program will not run. If you have two floppy drives, you can merely insert a formatted disk into the second drive and install from the installation diskette in the exact same manner as if you were installing to a hard disk. -------------------------------PAGE 3------------------------------- Another option is to first copy all of the program files, including the text files, to the **ROOT DIRECTORY**! of your hard drive, and then select the floppy drive as the drive to contain NW-FILELOCK. after this procedure is complete, delete the program files from your hard drive root directory. If you don't feel that NW-Filelock has been installed properly, then choose the UNINSTALL option in the INSTALL PROGRAM. This should remove your present NW-FILELOCK program. Run INSTALL again to re-install. RUNNING NAILLONWORKS FILELOCK I have made every attempt to make NW-Filelock user friendly and provide you with self descriptive options at each prompt. There are guidelines that should be followed however, when making decisions on the processing of files in this program. To start the program, change to the NW-LOCK directory by typing the DOS command cd\nw-lock at the DOS prompt. When the directory has been accessed, type NWLOCK and the program will pop up on your screen. OPTION PROMPT #1 When the program first begins, you will see at the top of the screen, the words L-LIST USERNAMES P-PASSWORD ESC-ESCAPE. The options presented to you at the top of the screen can be selected by typing the letter to the left of each hyphen. For example, to select the LIST USERNAMES option, press L or l. This screen and the options that you are given are called an OPTION PROMPT, and there are many such prompts in this program. But for now we will deal with the three choices presented option prompt #1. The ESCAPE option will end your session with NW-Filelock. Each option prompt, with the exception of those that are crucial in the processing of a file, provide you with at least one of three methods of termination. A-ABORT, Q-QUIT, and the previously mentioned E-ESCAPE. The A-ABORT choice will usually accompany a prompt that is expecting typed input from the user. An example would be the INPUT USERNAME prompt, should you change your mind and decide not to access NW-Filelock, or if you mistyped your name and needed to abort when prompted for a password. The Q-QUIT option is provided as a means of escape from a program operation, such as the LIST USERNAMES function or the directory listing. Selecting QUIT will send you to another option prompt, allowing you to continue with a different function of NW-Filelock. LIST USERNAMES This function was added to aid users in accessing NW-Filelock by displaying a listing of all registered usernames. It is also to benefit the system owner or operator identify users of the program in case they must be contacted for any reason. If the program has over 45 users registered, you can view the next page by hitting the space bar, and hitting p or P to view a previous page. PASSWORD When you select this option, you will be prompted for the username. It is a good idea to use your own name, although an alias or codeword could also be used. The main thing is that you remember what registered name you have your files protected under. If you don't want to keep all of your secured files under the protection of one username-password combination, you can register multiple times with different versions of -------------------------------PAGE 4------------------------------- your name or different code word altogether. One very important thing to consider. If you are using NW-Filelock on a network or multi-user PC where you are not the owner of the system you may wish to be notified if NW-Filelock has to be removed from service for any reason. Upgrades, disk reformatting, or technical problems might necessitate removal. IF you use a name at the username prompt that doesn't identify you, the de-installer will be forced to forfeit all the files listed to you. They will be destroyed when the program deinstalls. It is advisable to use the REMOVE USER option to take care user's files before de-installing NW-Filelock. This option will give you a variety of options in dealing with files as they are released from filelock. Of course this is not possible if you cannot be notified that the program is about to be de-installed. After you have input your username, NW-Filelock will process the name and determine if it is currently registered under the system, or needs to be registered as a new user. When this process is complete, NW-Filelock will ask you to either input a password for a new user if the name is not already registered, or it will state that the name is that of a previously registered user and ask you for the password to access that user's files. OPTION PROMPT #2 When you have finished with your password, whether you are a new user or a previously registered user, you will be given a new set of options. They include R-REMOVE USER C-CHANGE PASSWORD ESC-EXIT S-SECURE U-UNLOCK D-DIRECTORY and I-DECRYPT IMPORTED FILE. This set of options indicate that you are acknowledged by NW-Filelock and are ready to use its' features. Lets go through the options available to you now. REMOVE USER This option is to allow a person to remove a registry and all files associated with it from NW-Filelock. It gives the user two options of removal, EXPRESS or INTERACTIVE. With the EXPRESS mode, NW-Filelock processes each file registered under the current username-password combination, and attempts to place them in their original (home) locations in their original condition. If the file that is being processed is listed as being from a path that no longer exists, such as a directory that has since been removed or renamed, or a drive that is non-permanent, such as a floppy, it will be placed in the directory of NW-LOCK\FILEHLDR. Once the program has finished its' task of removing the user and the program has been terminated, these files should be dealt with at an operating system level. This will avoid cluttering the filehldr directory with unwanted or potentially sensitive files. The INTERACTIVE mode gives the user much greater control over how each file is dealt with as it is processeed by REMOVE USER. Included in the set of options are RELEASE TO HOME DIRECTORY, RELEASE TO NEW DIRECTORY, AND DELETE. As each file is brought up, the program pauses for the user to make one of the three choices. It also gives the user time to insert the appropriate floppy disk if it is desired to return the file to a path that is located on a disk or other non-permanent drive. If the original path was on a permanent drive, but has been removed or renamed, the user can select R-RELEASE TO NEW DIRECTORY, and specify a new path and even a new filename for the file. This option also allows the user to remove all of his or her files to non-permanent media so that they can be taken totally off the system. Lastly, one can choose to delete any file as it lists on the screen for -------------------------------PAGE 5------------------------------- processing. The REMOVE USER mode will only remove the current username-password combination, and only after it has confirmed with the appropriate password at option prompt #1. Also this is one procedure that does not allow the user to abort once the choice of EXPRESS or INTERACTIVE has been selected. As with any of NW-Filelock's features use it with care. You will be dropped to option prompt #1 upon completion of this procedure. CHANGE PASSWORD At any time after a user has entered their valid password, they have the option of changing their password. This is a simple procedure that merely prompts the user for the desired new password, and then records it in the program. Make sure it is under 20 characters in length, and pay attention to upper or lowercase usage because in NW-Filelock the password BASEBALL, is not the same as baseball, or Baseball. After a new valid password has been selected, the program will drop you to option prompt #2 where you still have access to the functions entitled to you. The next time you enter NW-Filelock however, you will have to provide this new password. SECURE Now we are getting to the heart of NW-Filelock. This function gives the user the ability to store files in a tamper-resistant subdirectory under a new filename. It provides the option of encryption to assure file confidentiality. NW-Filelock then keeps record of who secured the file, what it's new name is, and in what condition it is stored. You will be prompted for the full path\filename of the file you wish to secure. Be sure to type the FULL PATH of the file, so that the program can keep an accurate record of where the file came from. Also make sure that the path is under 33 characters long. This will allow you to secure a file that resides under at least two sub-directories, possibly three if the directory names are short. For example, the path of c:\dosgames\newgames\gamesman.txt would qualify, as would c:\dos\utility\text\filecomp.exe. IF you don't follow this guideline, you will mess up your screen and get an error message. You can get around this problem by first moving a file that is buried under too many sub-directories to a shorter path before securing. NW-FILELOCK will select the new name for the file automatically. Upon completion of the SECURE procedure, you will be asked if you wish to encrypt the file. Encryption is a good choice for maximum file security. It is also a necessity if you wish to release the treated file from the NW-Filelock program in a protected state (for modem transmission, or to a floppy disk for delivery). Files can also be released to any location on your system in this encrypted state. If you are not planning on transporting a file in a protected condition, and maximum file security is not a real necessity, securing a file without encryption is a good choice. It is much faster than encryption which, depending on the speed of your system, will encode at approximately 850 bytes per second. It is also relatively secure, unless your system is subject to intrusion by users armed with a knowledge of programming. After your file has been secured, you will be asked if you wish to delete the original file. NW-Filelock first renames and copies the file to the secure directory, and then deletes the original if you desire. If you don't already have a backup copy of the file being secured, you may wish to leave the source file on your system and deal with it later. Also if you are preparing data for transmission -------------------------------PAGE 6------------------------------- or transportation from your system, you may want to leave this original file in existence on your machine. The choice of deletion is up to you, all I will stress is that you do have a copy of the file in unaltered condition before you do delete. You may wish to use a wipe utility on the file instead of deletion. This will prevent an undelete utility from restoring the file. UNLOCK This option gives you additional options for file security. UNLOCK will release files registered to the authorized user from the secure directory. However it does not automatically decode the file if it has been been previously encrypted. UNLOCK is not limited to releasing the file to the same location from where it originally existed before being processed by NW-Filelock. When the user first selects U-UNLOCK, a list of all files that are registered to that user that are stored in the secure directory is displayed. This list can be paged down by using the space bar or paged up using P or p. This list is to aid users in spelling their choice of filenames to unlock. The paths of the filenames displayed on your screen at this time are the original paths that the files resided in before processing. When you locate the filename you wish to unlock, press U or u again and then type the entire path as seen on the screen. Remember to keep the path under 33 characters as mentioned in the SECURE section in this manual. This shouldn't be a problem since you shouldn't have any files with paths in excess of 33 characters on record with NW-Filelock. and if you are wishing to release the file to a new path that is too long, release it to a temporary subdirectory first, and then move it later to it's final location. Otherwise you will be met with an error message and an untidy screen. After a file has been selected, you will be prompted to indicate if you would like to release the file to its' home directory, or release it to a new directory. You can then type a new path for the file and even a new filename if you wish. The file can be placed to any location on your PC, or to any non permanent drive as long as the media is in place. For example, if the file originally was called c:\basic\filecomp.bas, you could put it on the A drive by typing a:\filecomp.bas, or even rename the file by typing a:\anyname.ok at the prompt that asks you to enter a new path-filename. Once the file has been released, NW-Filelock will check if the file has been previously encrypted. If it has, you will be asked to indicate if you would like to decrypt it. If you choose yes, the file will be processed and you will be dropped to option prompt #2 or the DIRECTORY mode, depending on where you were when you selected U-UNLOCK. If you decide not to decrypt, you will then be asked if you would like to password protect the file. Select yes if you want to be able to decrypt this file later by importing it into NW-Filelock. Files not password protected are rejected by NW- Filelock. When entering a password for the file, pay attention the case of the characters used, and keep the choice under 20 characters long. DIRECTORY The selection of D-DIRECTORY will give you the ability to view a list of all of the files and directories on your system, including floppies as long as a good disk is in place. After you first press D or d, you will be prompted to indicate what directory you wish to view. Type the entire path of the directory, for example you -------------------------------PAGE 7------------------------------- could type c:\windows\system to view that directory. After you input the path and hit enter, there will be a brief pause as NW-Filelock examines your system, and then the list will pop up. You can then page down through the list with the space bar, and up with P or p. Once you see the file you wish to secure, you may do so by pressing S or s and follow the prompts you are given. After you have secured the file, you will be dropped back to the directory you were viewing when you selected S-SECURE. It will refresh itself to remove the listing of the file you just processed, unless you chose not to delete the original file when prompted in the SECURE mode. At any time during viewing of a directory, you can change the directory displayed by pressing D or d again and typing in a new path. When you are finished with the directory mode, you can press Q or q to be returned to option prompt #2. IMPORT FILE TO DECRYPT By selecting I-IMPORT FILE TO DECRYPT, you activate the function that will allow you to bring a file into NW-Filelock, and decrypt it, provided it has been encrypted by NW-Filelock, and has been authorized by the addition of a password when it was released from its' home copy of NW-Filelock. This is the function you will use to decrypt a file that has been sent to you via modem, or a file that has been delivered on a floppy. When you receive a file on your modem using your communications software, you can place it in any directory you wish, and then type in that path when you choose to import and decrypt it. Make sure when you input the path or the file you wish to import that you follow the 33 character guideline mentioned earlier in the SECURE and UNLOCK sections of the manual. Once again you can use a temporary directory with a shorter path as a temporary holder for the file to import it from. After you have input the path, if the file is authorized to be decrypted, you will be asked to enter the password for the file. If the password is correct the file will be decrypted and returned to the directory it was in when you chose I-IMPORT FILE TO DECRYPT. REMOVING NAILLONWORKS FILELOCK FROM YOUR SYSTEM If it is ever necessary to remove this program from your system due to hardware problems, program malfunction, upgrades or any other reason, I have provided in the INSTALL.EXE program on your distribution diskette a routine for accomplishing this task. If it is at all possible, use the REMOVE USER mode to remove the user registries and files associated with the users from the program. Otherwise all the files will be deleted when you deinstall. This is to keep unauthorized people from gaining access to the secured files by simply removing NW-Filelock from the system. To activate the deinstallation routine, place the distribution diskette or backup copy in your floppy drive, change to that drive at the dos prompt, and type INSTALL. Then toggle to the UNINSTALL NW-FILELOCK option with the space bar and hit enter. Follow the instructions given you on the screen, and deinstallation should be accomplished. USING UNINSTALL TO RESET NW-FILELOCK The UNINSTALL option can be used to reset the program should you be having difficulty with the program. IF the program comes on screen at all when run, try to use the LIST USERNAMES function to -------------------------------PAGE 8------------------------------- display a list of the users. If this is accomplished, try to contact these people and have them try to access and dispose of their files with the REMOVE USER mode. This is because all the files will be deleted during the uninstall procedure. After this is completed to the best of your ability, run uninstall as described in the preceding section. After this is completed, toggle to CONFIGURE in the installation program and re-install. You should then have a functional copy once again. Again I'll stress the importance of backing up your files should a problem arise that should necessitate this procedure. QUESTIONS COMMENTS AND ORDERS If you have any questions concerning NW-Filelock, you may write to NAILLONWORKS PROGRAMMING at RT.1 BOX F-19 OROVILLE, WASH. 98844. or call at (509)-476-2872. Call after 5 pm pacific time on weekdays and after 8 am weekends. Please be patient when trying to contact me by phone. If you would like to order a copy of NW-Filelock, or know someone who does, please fill out the following information form and send it along with a check or money order for $39.95 to the above address. Or you can use the electrinic order form included in this program. Please expect your copy within two weeks in the continental U.S, slightly longer elsewhere. Print out the following information form using the utility of your choice, or make sure you include in your correspondence all of the information requested below. FULL NAME ____________________________________ NAILLONWORKS FILELOCK ADDRESS ____________________________________ 1.0 SHAREWARE VERSION CITY STATE __________________________________ ZIP CODE______________ PHONE (AREA CODE AND PREFIX INCLUDED)_________________________________ IF WITH A COMPANY, COMPANY NAME_______________________________________ BRAND NAME OF COMPUTER________________________________________________ CPU TYPE AND CLOCK SPEED (EXAMPLE 386/33mhz)__________________________ AMOUNT OF SYSTEM MEMORY________________________________________________________________ ON A NETWORK ?________________________________________________________ OPERATING SYSTEM (DOS 5.0 etc)________________________________________ SIZE AND DENSITY OF FLOPPY DRIVES________________________________________________________________ ______________________________________________________________________ IF ORDERING COPIES, NUMBER OF COPIES WANTED _______* $39.95=__________ IF WRITING DUE TO PROBLEMS OR COMMENTS, PLEASE USE THE LINES BELOW TO DESCRIBE IN DETAIL YOUR DIFFICULTY, OR COMMENT. THANK YOU. ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ ______________________________________________________________________ SEND THIS AND ALL OTHER CORRESPONDENCE TO: NAILLONWORKS PROGRAMMING RT.1 BOX F-19 OROVILLE, WASHINGTON, 98844 -------------------------------PAGE 9------------------------------- This program is dedicated to the memory of ORVAN LEWIS NAILLON. LIMITED WARRANTY NAILLONWORKS PROGRAMMING does not guarantee that the functions included in this program will fulfill your needs or perform totally error free. NAILLONWORKS PROGRAMMING will not be liable for any lost or damaged files resulting from the use of NW-FILELOCK 1.0, evaluation version. NAILLONWORKS PROGRAMMING will not be liable to you in any way for any damages including but not limited to lost time, profits, or any other consequential damages resulting from the use or inability to use NAILLONWORKS FILELOCK 1.0, evaluation version. <