Questions tagged [ecryptfs]

eCryptfs (the Enterprise Cryptographic Filesystem) is a POSIX-compliant encrypted filesystem that has been part of the mainline Linux Kernel since version 2.6.19. It has been implemented as a stackable file system and provides filesystem-level encryption. eCryptfs has been derived from Erez Zadok's Cryptfs.

eCryptfs (the Enterprise Cryptographic Filesystem) is a POSIX-compliant encrypted filesystem that has been part of the mainline Linux Kernel since version 2.6.19. It has been implemented as a stackable file system and provides filesystem-level encryption.

eCryptfs has been derived from Erez Zadok's Cryptfs.

More information and related tools can be obtained from https://launchpad.net/ecryptfs

42 questions
2
votes
2 answers

How do I mount/unlock my custom (!) ecryptfs directory on login?

I think I need to add a key from the user keyring to the kernel keyring on login for this, but let me just explain the whole thing: I have a custom ecryptfs directory set up with a huge annoying passphrase, because Ubuntu refuses to implement…
Redsandro
  • 11,060
  • 13
  • 76
  • 106
1
vote
0 answers

Problems when mounting an Ecryptfs folder located on an NFS share

This project just keeps getting better So to describe the scenario, I have a Raspberry Pi that transmits Ecryptfs Keys to my home server from abroad. There are 2 USB keys required for decryption. If I want to decrypt remotely, I will insert the 2…
1
vote
2 answers

How does this unique file header 'special marker' tell eCryptfs that it's an eCryptfs file?

I am writing a program (using Free Pascal, not C) that parses the header of eCryptfs files. One of the values in the header starts at byte 7 and ends at 15 (an 8 byte value). It is of use to me because it's a value that uniquely identifies the…
Gizmo_the_Great
  • 979
  • 13
  • 28
1
vote
0 answers

ecryptfs-migrate-home with domain user's home directory

Shortly, we have a windows AD Domain. We have lots of Ubuntu Clients with 18.04, currently, we want to encrypt those user's home directories. Our issue is when ecryptfs asks user's password even if we entered correct, it says wrong password. When…
1
vote
2 answers

Decrypt and mount an eCryptFS encrypted directory using an external C++ script in Linux

I want to decrypt and mount the default eCryptfs private directory by executing the "ecryptfs-mount-private" terminal command in C++ and providing the passphrase/password from the same C++ script. I have tried forking then exec the shell (/bin/sh)…
Trevor Bill
  • 43
  • 1
  • 4
1
vote
1 answer

Recreate the .Private link in your home directory

Don't ask why but I did rm .Private in my home directory. It deleted the soft link /home/user/.private not the /home/.ecryptfs/user. I did ln -s .Private /home/.ecryptfs/yoram/.Private/home/.ecryptfs/ but I get l?????????? ? ? ? …
user5637001
1
vote
1 answer

How do I make ecryptfs automatically use my key?

I would like to programmatically mount a volume from my code and I am using the mount system call for that. I have ecryptfs installed. To manually mount a volume, I can use mount -t ecryptfs /src /dst and this will cause ecryptfs to interactively…
steve landiss
  • 1,833
  • 3
  • 19
  • 30
1
vote
1 answer

How to mount remote ecryptfs directory?

I use rsync to synchronize the data on my client with a decrypted ecryptfs-container on the server. What I want to achieve is the following automatic process: If, on the server, keyctl show already has my desired key signature go to…
JD3
  • 33
  • 1
  • 7
0
votes
0 answers

Mounting FS from Kernel

I am experimenting eCryptfs. It is quite good. I have encrypted one directory which is having some confidential data. I can view/edit this data by mounting it via ecrypts tools. While mounting it does ask me password. So I write a short script which…
SHW
  • 145
  • 1
  • 10
0
votes
1 answer

Mounting ecryptfs using C++ mount function

I am trying to mount ecryptfs from within a C++ program. I can definitely mount it without it asking questions by issuing this command at the prompt: sudo mount -t ecryptfs -o…
Derf Skren
  • 479
  • 2
  • 22
0
votes
0 answers

Git "File name too long" after /home encryption with eCryptfs on Ubuntu

Basically after doing /home directory encryption with eCryptfs because of required security reasons of my client now when I tried to pull latest master I received such error: "filename" File name too long. The file is actually missing now and if I…
0
votes
2 answers

eCryptfs - same plain files generates different encrypted files

is there a way how to configure eCryptfs to produce same encrypted content for the same content of plain text files. I understand that could be a security risk, but I have a specific case. Example: $ md5sum * 09f7e02f1290be211da707a266f153b3 …
Bardolf
  • 63
  • 6
0
votes
0 answers

Git: how does git push handle an encrypted folder when "push"

Scenario: using git to push to a remote repo. Local and remote are regular git repos, not encrypted. Putting a possible ecryptfs filesystem within a folder within the repo to be pushed. If: a git pre-hook would assure unmounting the folder(umount…
m___
  • 101
  • 1
0
votes
1 answer

Memory mapped files failing in ecryptfs directory

On a regular ubuntu machine, the following test succeeds unless I run it in my home directory, in which case it crashes with a bus error. All I can think of is that it's because the home directory is encrypted. (I find Private and .ecryptfs links…
Adrian May
  • 2,127
  • 15
  • 24
0
votes
1 answer

How to do an aes encryption WITH a user password?

When softwares such as ecryptfs use AES, it asks for a user password (such as "password123"). The AES algorithm by itself does not call for a user password. So where does the "password123" get thrown into the math? I'm working to make a C function…
Dellowar
  • 3,160
  • 1
  • 18
  • 37