General :: Asymetric Encryption Of Directory?
Mar 1, 2011
Currently I am wondering whether it is possible to apply asymetric encryption of a directory in Linux.
I would like to achieve the following:
Write log files to /var/log/secret Everything written to /var/log/secret is instantly encrypted by a public RSA key (or something similar)
The encryption programms I know, i.e. ecryptfs do not support asymetric encryption of files, at least as far as I know. (Correct me if I am wrong). Therefore I am asking here whether you know of any possibility to implement this.
View 1 Replies
ADVERTISEMENT
Aug 20, 2011
I recently bought a new hard disk for my /home tree. I don't have encrypted home directories currently, but I was wondering if there is an easy way to encrypt my home directory so that it is automatically decrypted when I'm logging in (console/kdm). Basically I would like to manually do same thing as Debian installer would have done.
I'm running Squeeze.
View 2 Replies
View Related
Jun 19, 2011
Using SUSE 11, I'm trying to change my existing login user id HOME directory to use encryption. I use YAST to do this, just by clicking the ENCRYPTION box inside the USER AND GROUP MANAGER tool.I receive this error message -- "Not enough disk space left to copy existing data".Which file system do I need to add space to?Here are the filesystem existing sizes --
Filesystem: / Size: 6g Used: 3g
Filesystem: /home Size: 1.8g Used: 65m
View 4 Replies
View Related
Jan 3, 2010
Not using filename encryption when you create a new encrypted folder is easy, but how to disable it in the home encryption that is automatically set up by the Karmic installation CD?
View 1 Replies
View Related
Apr 4, 2010
What are my options for encrypting the /home directories of my Ubuntu laptops? They are currently setup without any encryption and some have /home as a separate partition whilst others don't. Most of these laptops are single-user standalone laptops which are out on the road a lot.
Is ecryptfs and the encrypted Private directory good enough or are there better, more secure, options? If somebody got hold of the laptop, how easy would it be for them to gain access to the encrypted files?
View 2 Replies
View Related
Jul 21, 2010
I have PDF files secured using 256-bit AES, requiring a password to open the file (Acrobat 9 or greater)
I can use Foxit Reader or Adobe Acrobat just fine on Windows, but I can't view those PDF's on Ubuntu or Mac OS X. What PDF readers for OS X and Ubuntu support 256-bit AES?
View 1 Replies
View Related
Oct 27, 2010
how to test the AES Encryption in the openSuSE 11.3
View 1 Replies
View Related
Feb 21, 2010
Question: The USA forbids the export of secure cryptography. NSAKEY has already been discovered in the Windows cryptograhic API. Since the Linux-Kernel is hosted in the USA, how secure is its cryptography ?
View 1 Replies
View Related
Mar 31, 2011
I've accidentally encrypted my 8GB usb stick instead of my 4GB stick and now I need to revert the encryption on the 8GB one. There doesn't seem to be an option like this in the TrueCrypt interface when I mount the USB.
View 2 Replies
View Related
Dec 9, 2010
I am using dd_rhelp to recover data from a failed 80Gb hard drive with Windows XP and PGP encryption.
My question: How do you mount a drive encrypted with PGP under Windows on a Linux box?
My scenario...
1. I am new to Linux
2. I do not know the PGP passphase
3. I am using Ubuntu and Knoppix
4. I have another 80Gb drive as the target drive
5. Source (bad) drive /dev/sdc1 drive is attached via a SATA-to-USB adapter
6. Target (good) drive /dev/sda1 drive is installed in laptop
My Problem....
Copies data from source to target drive with many errors. When I view the files copied to the target disk they file names are gibberish (extend character sets for file names) with huge file sizes (up to 9Gb).
I plug the target drive into a Windows laptop and it does not recognize it, even though it was formatted as ntfs.
View 3 Replies
View Related
Jun 6, 2010
I have been trying to perform a netinstall (of Debian). Will the WPA encryption on my wireless network prevent (or at least make difficult) the netinstall? Will I need to have the WPA password handy or even to temporarily remove the encryption?I haven't actually run into this problem yet; what I was dealing with on the last attempt, before I decided to finish the netinstall later and went back to my working Linux system (I got impatient with being stuck outside it), was that the netinstall couldn't detect my network by DHCP, and wanted me to enter an IP address. I don't suppose that would be any more difficult than going to the host computer and writing down its IP address, but thinking ahead, I wondered whether the WPA encryption would pose another problem.I didn't really think about these issues when deciuding to try a netinstall: whether my internet connection would work. I mean, if it doesn't, trying to netinstall is a waste of time.
View 1 Replies
View Related
Nov 12, 2010
I used this password Pass1234 when I search password stored its Nh2yEjhdHIwtY what kind of encryption is used? I thought it was crypt() , but when I create crpypt on my local machine its different.
View 3 Replies
View Related
Mar 2, 2010
I connect wireless success
WEP Encryption Key:10chars
Interface Type: 802.11b/g
well now in my windows pcs changed to
WEP Encryption Key:26chars [windows success]
what choices must change in ubuntu 9.10 for the new change?
Can you tell for 26chars WEP, what choices do not try [Not Appropriate], so find the solution for the right choice[selections of the form - WLAN CONN] easier of the remaining? E.g. Do not try "40/128..." but "128 passphrase"...?
View 1 Replies
View Related
Jan 25, 2011
Bitlocker is a harddrive encryption data protection tool which comes with Windows Vista Ultimate and 7. Does anyone know an equivalent for Linux distros like Fedora and Ubuntu?
View 3 Replies
View Related
Jul 14, 2011
The only reason why I don't use Linux (even though I prefer Linux over Windows, and can do everything faster and more efficiently) is because each time I try to learn about dm-crypt I give up.
Can someone point me in the right direction for full OTFE on Linux (like TrueCrypt)?
View 1 Replies
View Related
Jul 21, 2010
I'm a relative newby to Linux so forgive me if this is a simple question. I know that if you install Ubuntu using the alternate CD, you can create a whole disk encrypted installation, but what about after a normal installation? What is the best procedure to use to get more than just the home folder encryted? Installation of Fedora 13 gives the option during a normal install to encrypt more than just the home folder. I really only want to encrypt my Ubuntu partition. I have a laptop with a multi-boot setup with Windows 7, Fedora 13 and Ubuntu 10.04 all residing in their own partition. Because of this setup I really can't use whole disk encryption. I use Truecrypt on my Windows 7 partition and it works great but encryption of a Linux system partition is not supported.
View 4 Replies
View Related
May 12, 2011
Am configured SVN on Ubuntu 10.04 ,It's Working fine ;svn access method is svn://ipaddress .In this method am not encrypting the password ,Currently my passwd (/homesvnMyProject/conf )file like that [users]test = testNow i want to Implement the password Encryption for any users, without implementing svn+ssh:// method
View 1 Replies
View Related
Nov 26, 2009
I am just wondering what encryption method the shadow file uses, so that I may be able to manually change it. I ask this because I am trying to make a web page that will allow people to change their linux password via a browser.
View 4 Replies
View Related
Dec 23, 2010
I am building an active directory and using BIND9 as my DNS. To allow for secure dynamic updates from the domain, I am enabling GSS-TSIG as detailed here and here. Unfortunately, some of the commands and configurations used here seem to be depreciated, at least in the newer versions that I'm using. My issue is one of keytab encryption. I generated a keytab using ktpass.exe on the Windows Server 2008 domain controller. I have tried DES/MD5, AES128/SHA1 and AES256/SHA1, each have been turned down by ktutil on the kerberos server (FreeBSD). Each time, it outputs the following error: ktutil: AES256/SHA1*: encryption type AES256/SHA1* not supported *Respective to encryption used.
I cannot find a list of suitable encryption schemes that ktutil will accept. The FreeBSD handbook details a means of producing a keytab file, but I'm not sure how to configure the Domain Controller to use the keytab.
View 1 Replies
View Related
Mar 26, 2010
I'm moving over to Linux when the new SSD arrives. SSD gives increased performance, so I thought that I could encrypt everything.
But then I came to think about TRIM, and garbage collection on the drive. Will a LUKS encrypted drive affect the garbage collection system? (TRIM).
View 3 Replies
View Related
Jul 3, 2011
I have set up a Linux software RAID5 on three hard drives and want to encrypt it with cryptsetup/LUKS. My tests showed that the encryption leads to a massive performance decrease that I cannot explain. The RAID5 is able to write 187 MB/s [1] without encryption. With encryption on top of it, write speed is down to about 40 MB/s.
The RAID has a chunk size of 512K and a write intent bitmap. I used -c aes-xts-plain -s 512 --align-payload=2048 as the parameters for cryptsetup luksFormat, so the payload should be aligned to 2048 blocks of 512 bytes (i.e., 1MB). cryptsetup luksDump shows a payload offset of 4096. So I think the alignment is correct and fits to the RAID chunk size.
The CPU is not the bottleneck, as it has hardware support for AES (aesni_intel). If I write on another drive (an SSD with LVM) that is also encrypted, I do have a write speed of 150 MB/s. top shows that the CPU usage is indeed very low, only the RAID5 xor takes 14%.
I also tried putting a filesystem (ext4) directly on the unencrypted RAID so see if the layering is problem. The filesystem decreases the performance a little bit as expected, but by far not that much (write speed varying, but > 100 MB/s).
Summary:
Disks + RAID5: good
Disks + RAID5 + ext4: good
Disks + RAID5 + encryption: bad
SSD + encryption + LVM + ext4: good
The read performance is not affected by the encryption, it is 207 MB/s without and 205 MB/s with encryption (also showing that CPU power is not the problem). What can I do to improve the write performance of the encrypted RAID?
[1] All speed measurements were done with several runs of dd if=/dev/zero of=DEV bs=100M count=100 (i.e., writing 10G in blocks of 100M).
Edit: If this helps: I'm using Ubuntu 11.04 64bit with Linux 2.6.38. Edit2: The performance stays approximately the same if I pass a block size of 4KB, 1MB or 10MB to dd.
View 1 Replies
View Related
Aug 16, 2011
I plan to use newsbeuter for console RSS reading.This program has a config text file where I need to store my Google account password,in order to access my Google reader.I don't feel easy at making my password readable to everyone.Is there anyway I can somehow encrypt this information ?
View 1 Replies
View Related
Jul 30, 2010
I want to automate the following manual process.Currently, I am encryptying a set of files using openssl as follows:Encrypt file.txt to file.out using 256-bit AES in CBC mode $ openssl enc -aes-256-cbc -salt -in file1 -out file1.enI am then prompted for a password, which is then used to encrypt the fileWhen decrypting, I type $ openssl enc -d -aes-256-cbc -infile1.enc -out fileI am then prompted for the password - which again, I manually type.I want to automate this process of en/decryption - so I need to find a way of providing openssh with the password.
My first thought is whether it is possible to read the password from a file (say)? Or is there a better way of doing this?Also, I suppose that I will have to place restriction on who can view the password file - otherwise, that defeats the whole objective of using a password. I am thinking to run the bash script as a specific user, and then give only that user read rights to the contents of that file.Is this the way its done - or is there a better way?Ofcourse all of this leads to yet another question - which is, how to run a bash script as another user - without having to type the user pwd at the terminal.
View 1 Replies
View Related
May 16, 2011
I would love to be able to use TrueCrypt consistently across all my machines, be they Windows or Linux. As it stands, I can do full-disk encryption with pre-boot authentication only on Windows.
I don't really understand why this is. Are there technical challenges specific to Linux/Mac that make full disk encryption harder? Does anyone know whether TrueCrypt will support this in the near future.
PS. yes, I'm aware that there are other options. My goal is to simplify my life here and use the one tool across all machines.
View 1 Replies
View Related
Jun 16, 2010
I am a student studying computer science course.
Well, I am facing problem when doing lab questions.
I must use DLXLinux bundled in Bochs (bochs.sourceforge.net).
I am required to use the /usr/local directory.
In /usr directory, there is no directory named 'local' but there is one thing called 'local@'. So, when I try to use mkdir command to create 'local' directory in /usr , there are error "cannot make directory.....".
Look at my screenshot at [url].
View 9 Replies
View Related
Jan 18, 2010
How do you perform a long directory listing of all files in the /bin directory that have exactly three characters in their name?
View 1 Replies
View Related
Jan 29, 2010
Is there a way, on Linux, to cause all new files created in a directory to be owned by the directory's group instead of the creating user's group?
View 2 Replies
View Related
Oct 13, 2010
I want to run a cronjob every 15 minutes that checks a directory for files. If the directory contains more than ten files I want it to send an email to me.
All I have is this...
*/15 * * * * ls -l | wc -l | [filename] | mail -s "This is just a test" [email address]
I would rather not write a bash script. Is there an easier way to do this? I was looking into some commands like find and grep.
View 6 Replies
View Related
Jul 13, 2011
I'm quite new to linux but I have configured a simple ftp server and it's working great. I have a FTP-Shared folder with upload and download subfolders. Under upload's and download's I have identical category subfolders like mp3's, movies, software etc. in both. As the guy's upload, I would like to create a line crontab where I can move all the content under /FTP-Shared/upload/mp3/* older than 14 day's to FTP-Shared/downloads/mp3/ recursively (Like in cp command), but the timestamp must be searched on the first directory and not sub files example: /mp3/Club Dance/CD1/Hallo world.mp3This is how far I got:[root@clients ~]# /usr/bin/find /FTP_Shared/upload/Mp3s/ -depth -mindepth 1 -mtime +14 -type d -exec mv -f {} /FTP_Shared/download/Mp3s/ ;This command moves the directory and files, but it is not recursively
View 4 Replies
View Related
Apr 12, 2010
I've just installed Ubuntu 10.04, trying out linux for the first time. I'm wondering if it's possible to link my documents folder in Ubuntu to my documents folder in Windows, so that when I open the folder in Ubuntu, I am linked to the folder in Windows.
View 1 Replies
View Related
