hidden files or partitions with user but O S can see
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
hidden files or partitions with user but O S can see
Please help me!!
I am running CentOS with kernel 2.6. I want encrypt some files or partitions to transparent for user but the operating system must still see them to access data.
I found many way in internet but no one satisfy my requirement. i.e: BestCyrpt, dm-crypt, ppdd, cryptoloop, cryptographic...
Please guide me some solutions and how to use them.
Instead of encrypting those files, you probably want to chmod them so that only one user can read and execute those files.
First what you need to do is find out what the user is that whatever service you are running needs those files. e.g. if it is for apache, the user might be httpd, or wwwrun.
Once you determine the user, you will need to do 'chown <user>:<usergroup> <file>' on all those files. If it a lot of files and directories and stuff, you might want to do 'chown -R <user>:<usergroup> *'.
After you have done that, you will also have to run 'chmod 700 <file>' on all the files.
Once all this is done, only the service that you specified will be able to use those files. Others will not be able to view them.
thanks your guide!!
But ,this only secure in my server. If some one take my hard disk and boot it by other hard disk , CD Rom, or Floppy disk, I will can't protect my files.
I think we must encrypt whole disk and apply your way. so these files are protected. But I can not find any encrypt whole disk soft in Cent OS.
but i would suggest that, considering this is a server, you should only encrypt the partitions on which your vital data is stored (and the swap partition of course)... i mean, let's say you have the whole disk encrypted and then the server is rebooted (for whatever reason) while you are away - wouldn't you have to drive (or fly) back to the datacenter to boot the server with your key?? AFAIK you would even have to be physically present in order to reboot the server voluntarily... that kinda sucks IMHO...
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.