LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 05-17-2005, 09:58 PM   #1
TomaCzar
Member
 
Registered: Dec 2003
Location: Roc City (Rochester-NY)
Distribution: Slacker 4 Life
Posts: 125

Rep: Reputation: 15
encrypted home directories


Alright, here's the deal.

I want to use dmcrypt to encrypt a file (preferably) or partition and use xdm authentication information to decrypt and mount the file/partition as the home directory.

http://deb.riseup.net/storage/encryption/dmcrypt/ explains how to accomplish this only this howto is for a system using PAM. Slackware doesn't use PAM and I'm not sure how to accomplish the same goal on a Slack system.

If anyone has a stronger understanding of how XDM handles authetication data, what Slackware uses instead of PAM, or how to accomplish my end goal using the implementation I've decribed (Slackware, XDM, dmcrypt) your help would be greatly appreciated.
 
Old 05-19-2005, 07:00 AM   #2
gbonvehi
Senior Member
 
Registered: Jun 2004
Location: Argentina (SR, LP)
Distribution: Slackware
Posts: 3,145

Rep: Reputation: 51
If I didn't read wrong, that howto tells to use PAM if you want to use a encrypted /home paritition (it's the "encrypted partitions" section), but it doesn't need it to encrypt a loopback file, read the "encrypted loopback" section, i think that's what you want to achieve.

Edit: This is a quote from the "encrypted loopback" section introduction:
Quote:
This is instructions for using dm-crypt to create a filesystem in a loopback file, this means storing an encrypted filesystem in one individual file. This is useful if you cannot or do not want to encrypt your entire partition. See above for how to do an entire partition.
What if you already have a filesystem, such as your /home directory, that you realize later that you want to encrypt but you cannot destroy that filesystem and then recreate it. Or perhaps you just want to encrypt part of it, you can do this with a dm_crypt loopback encrypted file.
Regarding XDM, you could use the xdm initialization scripts to check for which user was logged in and mount a desired file for it. You can make root the owner of that file so no one will be able to read it unless if the user logged in trought XDM so the script check if it's him that logged in and mounts it (XDM is run as root).
Here's a thread where a user needed to change resolution according to the user and reset to default one on logout: http://www.linuxquestions.org/questi...hreadid=308765

You could make something similar but mounting a file, and instead of using .xsession, using the DisplayManager._0.startup: variable in xdm-config (you need to also run GiveConsole script which is the default value of it).
I think you'll understand what i'm talking about after reading that thread.

Last edited by gbonvehi; 05-19-2005 at 07:39 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Apache Root/Home Directory and setting up FTP for home directories? Mankind75 Linux - Newbie 6 07-23-2006 02:37 PM
Several problems after implementing encrypted home directories nv22nv Linux - General 1 07-27-2005 11:05 AM
encrypted home on Slamd64 Phathead Slackware 1 04-29-2005 07:11 AM
permissions home directories powadha Debian 6 06-11-2004 11:45 AM
Home directories are full homerson Linux - General 1 05-27-2004 10:24 PM


All times are GMT -5. The time now is 09:49 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration