LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-04-2018, 05:56 AM   #1
Murz
LQ Newbie
 
Registered: Jun 2009
Posts: 14

Rep: Reputation: 0
Question Store ecryptfs files inside home folder when enabling full home folder encryption in Linux


By default, most of Linux distributives when enabling full home folder encryption - store encrypted files outside of user home folder, eg in `/home/.ecryptfs/alice` for `/home/alice` homefolder. This is not so comfortable for manage and backup home folders (eg I must check if user have enabled encryption and backup other home folder if yes).

Is there any way exists for store ecryptfs files inside user home folder when enabling full home folder encryption, eg in /home/alice/.ecryptfs_files?

The main problem with this way is that after mounting unencrypted folder to /home/alice - folder with encrypted files /home/alice/.ecryptfs_files will be not available.

Maybe exist some solutions for implement this way of home folder encryption - store encrypted files in ecryptfs folder inside user home directory?
 
Old 06-04-2018, 09:42 AM   #2
_roman_
Member
 
Registered: Dec 2017
Location: _Austro_Bavaria_
Distribution: gentoo / linux mint
Posts: 433

Rep: Reputation: 28
Quote:
full home folder encryption
Just don't

full encrypt / or do not use it at all

--

I do not get your issue, or why it is complicated.

Hardware

partitions => physical extents => lvm2

=> luks

=> ext4

--

The only difference is some changes to the kernel and a self written init script. and a few changes to /etc/fstab

The user do not really see that it'S encrypted on an user level.


Quote:
By default, most of Linux distributives when enabling full home folder encryption
better said most newbie distros

better said SYSTEMD based distros (also newbie distros)

better said binary junk distros, systemd, bad package managers, lack of customisation, 80 percent of functionality when 100 percent is expected out of the box

"unsecure" - "guessed" Default values, which are most of the time unsecure, and well documented how the defaults are

newbie distro: encrypting only home folder says everything. The script writer, the user did not really understood how problematic it is. this topic was discussed a lot why.

--

Quote:
Maybe exist some solutions for implement this way of home folder encryption - store encrypted files in ecryptfs folder inside user home directory?
yes

SSD => gpt partition table => lvm2 => luks => ext4

has many additional benefits

encrypting only home => cries newbie user around!

also no hibernation / no sleep modes / always lock screen / set good defaults, remove any junk you do not need => again we are at the point newbie distros pull in too much software / pacakges / dependencies which you do not need. space waste / insecure ...

Last edited by _roman_; 06-04-2018 at 09:43 AM.
 
Old 06-05-2018, 12:28 AM   #3
Murz
LQ Newbie
 
Registered: Jun 2009
Posts: 14

Original Poster
Rep: Reputation: 0
I want to encrypt my home notebook, that used not only by me, but by other family members too. So if I encrypt whole drive, I will need to share password with all my family? And all users will must use same password?? This is too bad for usability, I want encrypt only my user data, with my individual password!
 
Old 10-24-2018, 05:58 PM   #4
FredGSanford
Senior Member
 
Registered: Nov 2005
Location: USA
Distribution: Mageia Cauldron - VoidLinux - Devuan
Posts: 1,069
Blog Entries: 5

Rep: Reputation: 166Reputation: 166
Did you ever get a solution? If not, have you looked into EncFS or CryFS? Your version of linux should have one or both in the repositories.

EncFS
https://github.com/vgough/encfs

CryFS
https://www.cryfs.org/
 
Old 10-27-2018, 04:57 AM   #5
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 9,957
Blog Entries: 7

Rep: Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450Reputation: 2450
Quote:
Originally Posted by Murz View Post
Is there any way exists for store ecryptfs files inside user home folder when enabling full home folder encryption, eg in /home/alice/.ecryptfs_files?
this is impossible.
you cannot store the ecryptfs files INSIDE the encrypted folder.
 
  


Reply

Tags
ecryptfs, encryption


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Home folder encryption? Novatian Linux - Security 6 09-06-2016 01:10 PM
[SOLVED] Questions on home folder and full drive encryption. linustalman Linux - Security 9 07-09-2014 09:45 AM
Home Folder Encryption with ecryptfs imayneed Linux - Software 3 09-24-2012 06:05 PM
[SOLVED] How to easy set up encryption on existing data - home folder? infoslaw Linux - Newbie 5 02-12-2012 10:34 AM
[SOLVED] Home folder full EDDY1 Debian 8 12-27-2010 05:23 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:36 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration