LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 02-11-2013, 12:44 PM   #1
xmrkite
Member
 
Registered: Oct 2006
Location: California, USA
Distribution: Mint 16, Lubuntu 14.04, Mythbuntu 14.04, Kubuntu 13.10, Xubuntu 10.04
Posts: 554

Rep: Reputation: 30
Securing OwnCloud and granting my user permission to the files


Ok, I got owncloud working great. It's secured with ssl, but I want one step better.

I want to encrypt the entire partition if possible. What do I do to get that going? Will owncloud work if the partition is encrypted? Can I do it without deleting everything. I was able to encrypt my home directory after an install and I'd like to do the same thing here if possible.

Also, the www-data user owns all the files. I want my regular user who has sudo power to be able to go into those encrypted folders and view and modify all the files without any extra hassle.

Is all this possible or am I in a dream world? Lastly, I need to be able to run scripts that backup those owncloud folders to another server. Is this all possible if it's encrypted? I just don't have much experience working with encrypted partitons/folders/files.

-Thanks
 
Old 02-11-2013, 09:07 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
AFAIK Owncloud resides in /var/www/owncloud or something. It uses a database as backend and can incorporate local and remote file systems into its own virtual file system. What you could encrypt without loss depends on your disk layout (partitions) and how much space you have left. For example if you have enough space left on disk for another partition you could create a new one, set up LUKS and a file system, temporarily mount it somewhere, copy /var/www/owncloud into it, delete the "old" /var/www/owncloud and then crypt-mount the new file system as /var/www/owncloud. OTOH if you only have "/" and "/home" and no space left and you want to encrypt the whole "/" then it's probably faster to make a backup, install your OS anew and restore from your backup taking care not to overwrite anything that has to do with kernels, images, or encryption configuration / initialization.
 
Old 02-12-2013, 03:07 PM   #3
xmrkite
Member
 
Registered: Oct 2006
Location: California, USA
Distribution: Mint 16, Lubuntu 14.04, Mythbuntu 14.04, Kubuntu 13.10, Xubuntu 10.04
Posts: 554

Original Poster
Rep: Reputation: 30
Nothing in the os is really sensitive, it's the stuff on my other partitions that need to be secured.

I have a few 3tb drives and they have plenty of space free. I recall when I installed ubuntu on a different system, I did not encrypt my home directory. Later, I changed my mind and decided to encrypt it. I was able to "apply" encryption and get everything encrypted without a reinstall or moving any files.

Also, it's not encrypting the whole partition, just everything in the home directory. Is this possible to do for my owncloud server? Just encrpyt that folder and everything that goes in it?
 
Old 02-12-2013, 05:54 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Quote:
Originally Posted by xmrkite View Post
Also, it's not encrypting the whole partition, just everything in the home directory. Is this possible to do for my owncloud server? Just encrpyt that folder and everything that goes in it?
Yes and I kind of outlined it in my previous post. The basic requirement is a partition though. Doesn't mean you can't encrypt a directory but then you have to choose something other than LUKS like say FUSE EncFS.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Granting write permission to subdirectory Fooshnik Linux - Security 12 01-13-2011 05:50 PM
Granting full read/write permissions to all files for a specific user laserjim Linux - Security 10 01-31-2009 11:17 AM
Granting Permission Sidhant1231 Linux - Security 2 04-17-2008 04:26 AM
Granting permission to files owned by apache piforever Linux - Security 3 03-18-2006 08:51 PM
Granting Permission RedRedKrovy Linux - Newbie 3 01-03-2005 11:13 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 08:11 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration