Stack Overflow
Stack Overflow

Questions tagged [ecryptfs]

eCryptfs (the Enterprise Cryptographic Filesystem) is a POSIX-compliant encrypted filesystem that has been part of the mainline Linux Kernel since version 2.6.19. It has been implemented as a stackable file system and provides filesystem-level encryption. eCryptfs has been derived from Erez Zadok's Cryptfs.

eCryptfs (the Enterprise Cryptographic Filesystem) is a POSIX-compliant encrypted filesystem that has been part of the mainline Linux Kernel since version 2.6.19. It has been implemented as a stackable file system and provides filesystem-level encryption.

eCryptfs has been derived from Erez Zadok's Cryptfs.

More information and related tools can be obtained from https://launchpad.net/ecryptfs

42 questions
16
votes
1 answer

what is difference between linux kernel subsystem dm-crypt and ecryptfs?

I was trying to read the source of ecryptfs in linux. Could anyone help me to explain the distinguish between linux kernel subsystem dm-crypt and ecryptfs. Is there any reference books that introduce source of ecryptfs. thanks for helping me .
user2672048
  • 165
  • 1
  • 1
  • 5
8
votes
2 answers

Securing data on SD card Raspberry Pi

I need to store sensitive data on Raspberry so that software running on Raspberry can use it, but nobody else cannot. I can set hard password, disable tty's and so on, but it's easy to remove SD card and examine in on a PC. My first try is eCryptFS.…
Oleg Antonyan
  • 2,943
  • 3
  • 28
  • 44
7
votes
1 answer

How can I use transparent data encryption with MySQL?

I want to enable Transparent Data encryption (TDE) on MySQL. I don't mind if the entire db is encrypted (as opposed to a few columns or rows or tables). I am using this for a study, so I am looking for something that is open and free. I found…
Rahul
  • 1,495
  • 1
  • 15
  • 25
5
votes
2 answers

Using direct IO with ecryptfs and similar stackable file systems

Does "ecryptfs" support direct I/O? In general, how can a "stackable" file system, that modifies buffer provided by user support direct I/O?
ghostkadost
  • 502
  • 4
  • 14
4
votes
2 answers

mount ecryptfs with syscall in C language

I am trying to mount an fs with ecryptfs in a program in C. But I don't manage to give to the kernel part the key int mount_crypt(char* source) { int r = -1; char opt[1024] =…
flav
  • 181
  • 11
3
votes
1 answer

How do I mount an encrypted /home directory with Linux Mint 18.3 KDE?

I decided to figure out how to recover data on a disk if the system does not start. It's better to do it before it happens;) Since there is no definitive correct answer for Linux Mint 18.3 KDE anywhere, I had to find a solution myself. Good topic…
mixalbl4
  • 3,507
  • 1
  • 30
  • 44
3
votes
0 answers

How to use ssh-askpass in systemd and init.d at startup

I am encrypting a directory /opt/directory using ecryptfs. I want to create service using systemd and init.d that prompts the user for encryption password and mounts the directory. I have tried using ssh-askpass in my script called by the systemd…
Shahbaz Shueb
  • 410
  • 4
  • 9
3
votes
1 answer

Does the linux kernel keyring store keys on disk?

I'm trying to learn a bit about the linux kernel keyring (as background for using ecryptfs). Does the kernel keyring store keys somewhere on disk, or does it get reinitiailized programmatically everytime the sytem is booted? I've looked at the…
zed4
  • 173
  • 1
  • 11
3
votes
1 answer

Error mounting eCryptfs: [-13] Permission denied - Amazon Linux AMI

I am trying to encrypt a directory somewhere in /home/balab/payload/bala/encrypt_data cd /home/balab/payload/bala from here i hit following command to encrypt sudo mount -t ecryptfs ./encrypt_data ./encrypt_data At the end I get "Error…
BalaB
  • 3,687
  • 9
  • 36
  • 58
3
votes
1 answer

Mount encrypted home after ssh login permanently

I have set up an Ubuntu Server 14.04 with an encrypted home directory. The ssh public keys are outside the home directory so I can login after a restart, when the home directory is unmounted. I use ecryptfs-mount-private to mount the directory but…
MPSCY
  • 47
  • 5
3
votes
1 answer

ecryptfs - How does the passwd utility update the hash for non-admin password changes?

I have been playing around with ecryptfs to manually mount/unmount a private store via ecryptfs-mount-private and ecryptfs-umount-private. When I'm logged in as a user with ecryptfs configured (ie: username is bob), it asks for my login password for…
Cloud
  • 18,753
  • 15
  • 79
  • 153
2
votes
1 answer

Using ecryptfs inside Docker without --privileged. Appropriate value for --device?

I'm required to set up a Docker container inside which part of the filesystem is encrypted. Please let's not dwell on the why, the answer is ugly and more political than technical. In case it matters, the particular part to be encrypted will be a…
Pete Verdon
  • 335
  • 1
  • 10
2
votes
1 answer

ecryptfs-mount-private is using login passphrase instead of mount passphrase on ubuntu 15.04

When I used ecryptfs-setup-private on ubuntu 15.04 I was asked for my login passphrase and to set a mount passphrase. ~$ ecryptfs-setup-private -f Enter your login passphrase [******]: Enter your mount passphrase [leave blank to generate one]:…
lingxiao
  • 1,214
  • 17
  • 33
2
votes
1 answer

seamlessly automount ecryptfs using ssh key auth?

Is there any way to automount ecryptfs mounts when logging in via ssh key and without additional user interaction? For example, is there any ssh extension that tells the client to decrypt some remote stuff like the ecryptfs passwd by using its…
user1050755
  • 11,218
  • 4
  • 45
  • 56
2
votes
1 answer

Mount multiple directories using ecryptfs

I am using ecryptyfs to store some sensitive data in my PC (Debian wheezy). The data is in a partition and the partition is mounted automatically on bootup using /etc/fstab I have setup /root/.ecryptfsrc with correct parameters. Contents of my…
Raj
  • 319
  • 3
  • 12
1
2 3