LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-05-2006, 09:48 PM   #1
funnybossvn
LQ Newbie
 
Registered: Oct 2005
Posts: 10

Rep: Reputation: 0
hidden files or partitions with user but O S can see


Please help me!!

I am running CentOS with kernel 2.6. I want encrypt some files or partitions to transparent for user but the operating system must still see them to access data.

I found many way in internet but no one satisfy my requirement. i.e: BestCyrpt, dm-crypt, ppdd, cryptoloop, cryptographic...

Please guide me some solutions and how to use them.

thank you so much
 
Old 06-06-2006, 03:08 PM   #2
pdeman2
Member
 
Registered: Jul 2005
Location: Maine, USA
Distribution: OpenSUSE, Gentoo, Fedora, Ubuntu, Mandriva, others
Posts: 413

Rep: Reputation: 30
Instead of encrypting those files, you probably want to chmod them so that only one user can read and execute those files.

First what you need to do is find out what the user is that whatever service you are running needs those files. e.g. if it is for apache, the user might be httpd, or wwwrun.

Once you determine the user, you will need to do 'chown <user>:<usergroup> <file>' on all those files. If it a lot of files and directories and stuff, you might want to do 'chown -R <user>:<usergroup> *'.

After you have done that, you will also have to run 'chmod 700 <file>' on all the files.

Once all this is done, only the service that you specified will be able to use those files. Others will not be able to view them.
 
Old 06-06-2006, 09:01 PM   #3
funnybossvn
LQ Newbie
 
Registered: Oct 2005
Posts: 10

Original Poster
Rep: Reputation: 0
thanks your guide!!
But ,this only secure in my server. If some one take my hard disk and boot it by other hard disk , CD Rom, or Floppy disk, I will can't protect my files.

I think we must encrypt whole disk and apply your way. so these files are protected. But I can not find any encrypt whole disk soft in Cent OS.

help me
 
Old 06-06-2006, 09:31 PM   #4
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
here's a nice article about encryption your entire root filesystem:

http://www.linuxjournal.com/article/7743

but i would suggest that, considering this is a server, you should only encrypt the partitions on which your vital data is stored (and the swap partition of course)... i mean, let's say you have the whole disk encrypted and then the server is rebooted (for whatever reason) while you are away - wouldn't you have to drive (or fly) back to the datacenter to boot the server with your key?? AFAIK you would even have to be physically present in order to reboot the server voluntarily... that kinda sucks IMHO...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
qtparted makes new partitions hidden chud67 Linux - Software 1 10-22-2005 09:56 AM
home directory files gone, hidden files remain Grasshopper Linux - Security 12 04-10-2005 08:23 PM
hidden files Alwyn Linux - Newbie 2 01-27-2005 12:20 AM
M$ CD w/ Hidden files???? trey85stang Linux - Newbie 3 05-04-2004 09:00 PM
New LILO version automatically make windows partitions hidden changing it with cfdisk TroelsSmit Linux - General 5 02-21-2004 01:50 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:08 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration