Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ecryptfs]

26 questions
1
vote
2 answers

LUKS/dm-crypt security in the case of a break-in

This is an encryption topic I've been confused by for a while now. From what I understand of LUKS, once the LUKS volume is opened with a passphrase and the resulting device mapper device is mounted, it can be read from and written to until the point…
Aaron Hastings
  • 113
  • 3
1
vote
0 answers

Allowing users to mount arbitrary directories

I'm attempting to roll out eCryptFS support for users on our RHEL infrastructure. One large snag has come up. Given a user with no root access and (preferably) without the use of sudo, how would one go about allowing that user to mount an arbitrary…
Hyppy
  • 15,608
  • 1
  • 38
  • 59
1
vote
2 answers

Does ecryptfs (perhaps implicitly) checksum data?

I am planning to set up a NAS with ecryptfs used for encryption. I am wondering if ecryptfs will tell me if a file has been silently corrupted (by e.g., a faulty harddrive), or if I would still be dependent on the underlying filesystem to do data…
Quantumboredom
  • 113
  • 4
1
vote
3 answers

crontab cannot find script

I have a cron job that runs under my user once per night. I installed it using crontab -e and a by adding the line: 0 1 * * * /home/username/diskreport.sh The crontab is set up so that it emails me the result. Seemingly randomly I get…
Pete
  • 271
  • 1
  • 4
  • 19
1
vote
2 answers

pam_ecryptfs: Error getting passwd (ProFTPD)

proftpd: pam_ecryptfs: Error getting passwd info for user [USERNAME] I am getting this error in the syslog nearly every time any user connects via FTP, the user is able to connect and the session seems to continue without a hitch. ProFTPD.log shows…
Olirav
  • 21
  • 5
1
vote
3 answers

Ubuntu: How to decrypt home directory, swap (basically everything) without reinstalling?

I just faced a problem with encrypted home directory in Ubuntu Server 10.04. While I know a workaround, I want to just to completely remove encryption from everything. Any hints how to do that without complete backup & reinstall?
BarsMonster
  • 724
  • 4
  • 12
  • 26
1
vote
0 answers

Rsync: Exclude files by maximum filename length (< 143 characters)

A cronjob copies files from a remote server (probably ext4) via rsync to a local encrypted partition (probably eCryptFS on top of ext4). Now rsync throws errors for filenames that are longer than 143, which is expected due to the way filenames are…
Thomas Ebert
  • 143
  • 5
1
vote
1 answer

mount.ecryptfs_private in .xsession started by nodm/lightdm complains with "mount: no such file or directory"

I'm trying to decrypt the Private directory inside a user $HOME automatically at system startup. The system is a Debian GNU/Linux 10 (actually a Raspbian, but I assume it's no different to this end) that uses NoDM to start Xorg. EDIT 1: I've now…
Lucio Crusca
  • 420
  • 3
  • 12
  • 33
0
votes
2 answers

Debian encrypted home directory setup fails

Here's the problem: # ecryptfs-migrate-home -u INFO: Checking disk space, this may take a few moments. Please be patient. INFO: Checking for open files in /home/ Enter your login passphrase []:…
Anon
  • 1
  • 2
0
votes
1 answer

How can I use a temporary file descriptor with ecryptfs?

I'd like to be able to run a script, have it prompt me for my password, and then mount an ecryptfs directory. I do not want the password to sit around on the file system, or show up in logs, ps, etc. I thought I could use a temporary file descriptor…
Willi Ballenthin
  • 365
  • 1
  • 2
  • 11
0
votes
0 answers

Does ecryptfs support AES-256? How can I check?

I have been asked if our workstations are encrypted with AES-256. I have not been able to find this information at ecryptfs.org. Various web searches report conflicting information. Is there a way to check what encryption is used on a…
dannyman
  • 358
  • 5
  • 15
1
2