Ubuntu Security :: Control Exclude Items For Home Folder Encryption With Ecryptfs?
Apr 17, 2011
if it's possible to use a white or blacklist to control which folders are ecryptfs encrypted when you're using the "encrypted home folder" option.
Of course I can always create an extra folder outside of my ~ and then symlink what I don't want encrypted into it, but I'd rather that it's possible to create like, ~/.ecryptsfs/excludelist with a list of paths that shouldn't be encrypted.
View 2 Replies
ADVERTISEMENT
May 3, 2010
When I installed, I selected the option to encrypt my home folder. I believe this is causing constant crashes now, since error message is user id/password related. Is there a way to remove the encryption?
View 5 Replies
View Related
Mar 9, 2011
I need to do a reinstall (read the details here): http://ubuntuforums.org/showthread.php?t=1703381 but I need to be able to access my home directory which is encrypted. Is there a way to decrypt my home folder, so that I don't get into trouble accessing it later on?
View 9 Replies
View Related
Mar 20, 2010
When installing the latest Distro of Mint (I believe this is not much different, if at all, from Ubuntu as far as this goes) I chose to have my Home folder encrypted using the login password. This was a function of the installation. What I was wondering about was how secure this was and if I should maybe use something to do a better encryption or not.
View 1 Replies
View Related
Jul 1, 2010
I was wondering how to activate encryption on my home folder, like sugested when creating the first user? in 10.04Also, is it any good to use?It's a work computer with sometimes private documents (cv, docs, etc) and i would like to be sure no one can access it, even as root.
View 3 Replies
View Related
Oct 21, 2010
long ago when i upgraded from jaunty to lucid, everything was fine when suddenly one day i found my desktop flooded with my home folder contents. i was trying a lot of juglery but no result. finally i went to gconf-editor and unchecked the show desktop menu on apps > nautilus > preferences.recently i upgraded from lucid to maverick. felt the problem will b resolved but it is still such.
View 2 Replies
View Related
Nov 24, 2010
Two questions concerning the "insert your password screen" that pops up after some minutes of inactivity: 1) How can I disable it, if I don't want it to pop up anymore? (maybe on startup, but not after inactivity) 2) If it is not disabled: During the installation of Ubuntu, it is asked whether the password chosen will be used only to unlock the screen or also to unencrypt the user's home folder. Supposing the user chose the former option, how can he currently go back and choose to also have encryption? Also: is this encryption good? Is encrypting the home folder enough to protect personal data from eventual laptop theft?
View 5 Replies
View Related
Jan 3, 2010
Not using filename encryption when you create a new encrypted folder is easy, but how to disable it in the home encryption that is automatically set up by the Karmic installation CD?
View 1 Replies
View Related
May 1, 2010
I ticked the box for this when I installed Lucid, but how can I verify that it's actually performing the encryption/decryption?
View 4 Replies
View Related
Oct 11, 2010
Ubuntu 10.04 LTS Ran some updates,finally got around to rebooting. When I rebooted, It came up with Some errors about missing files. Came to discover my home directory was not decrypted. I simply had a readme file that said to run "encryptfs-mount-private". When I do it doesn't tell me the passphrase is incorrect, it tells me
Code:
Inserted auth tok with sig [xxxxxxxxxx] into the user session keyring You do not own that encrypted directory and I do own it. If I put in a different pass it tells me it's incorrect, I'm logging in fine, but my home directory is remaining encrypted.
View 9 Replies
View Related
May 7, 2011
I have a fresh install of Kubuntu 11.04 and I already have the lastest ecryptfs-utils installed. I have the ".Private" folder but not the "Private" folder.
When I try to set it up I get this error:
Quote:
$ ecryptfs-setup-private
ERROR: wrapped-passphrase file already exists, use --force to overwrite.
How do I get my "Private" folder to appear? I don't think I should just be throwing my stuff into ".Private" and I don't want to have to see all the hidden folders all the time either. Should I use the --force argument, and what would that do?
View 1 Replies
View Related
May 11, 2010
I'm using lucid desktop edition, and I need to encrypt my home folder, but I didn't mark that option in the fresh instalation of lucid. I'd like the login screen to ask for the password and then decrypt my files.Is it possible to do without erasing my user?
View 2 Replies
View Related
Feb 11, 2010
I have just installed Ubuntu Jaunty (I do not like Karmic, please don't try to make me upgrade) and after installing all my programs I realized I did not encrypt my home directory.
I know it's very simple to do this during the installation but I can't seem to find an option to do it after it.
Is there a way to do this?
View 1 Replies
View Related
Mar 9, 2010
I just installed 9.10 on my laptop and selected the option for home folder encryption. I am running DropBox and placed the DropBox folder on my desktop (meaning it should be encrypted when I am logged out.) So I have two questions:
1) Shouldn't this setup cause my DropBox files on the server to be encrypted? Apparently they are not because they appear as unencrypted text using the DropBox Web interface.
2) If they were encrypted on the server (which doesn't appear to be the case right now), how would it be possible to share them with another client unless the encryption on both clients were set up identically?
View 7 Replies
View Related
Jul 19, 2010
Let's begin from the top. I have a relatively new laptop that I've been running Ubuntu on (along with a little-used Windows boot). Picked it up in November or so, installed the current "latest" version of Ubuntu at the time (9.10). I have been doing incremental upgrades, and it's been progressively breaking down more and more. Yes, this includes 10.04.
After GRUB stopped working, I decided it was time to try a reinstall from the top. I told it to leave all the other operating systems alone and do a full reinstall.
Fortunately, I had managed to stuff most of my current work in duplicate locations during this whole debacle, somehow. Don't ask me how I managed to do that when GRUB wasn't working. However, when I installed, I conscientiously said "Oh, yes, Ubuntu, encrypt my home folder! I love privacy!" As a result, about... 30 gigabytes of useful (but ultimately re-downloadable) material is rather inaccessible at the moment. When I try to boot the old system using the newly fixed GRUB, it goes into kernel panic. This seems like a no-go.
I have a saved hojillion-character long passphrase for decryption from my install back in November. Conscientiously saved in the case of just such an emergency.
I read this how-to and followed it to the letter as far as I could tell, trying to mount with ecrytfs to recover my data.
[USERNAME] here is a proxy for my actual username. Yes, the location of my old home folder may seem a little bizarre.
Code:
sudo mount -t ecryptfs /media/c82ca9fe-2b15-4aca-a98d-6482b1d80a32/home/[USERNAME]/ /home/[USERNAME]/oldhome
Passphrase:
Select cipher:
1) aes: blocksize = 16; min keysize = 16; max keysize = 32 (not loaded)
[Code].....
View 9 Replies
View Related
Mar 19, 2010
How to secure the Home folder. I forgot what the script was?
Something like chmod 0700 $HOME. Is that right? I'm just not sure.
View 2 Replies
View Related
Apr 11, 2010
What are the steps I must take to move my existing home folder to a separate, encrypted partition? Can I create this partition without damaging my current partition? Where is a trusted location to download App Armor profiles? What else can I do to harden the security of Ubuntu?
View 1 Replies
View Related
Jun 29, 2010
last week I decided to not just run dist-upgrade, but give the Lynx a completely fresh install. Before that I've only copied my home folder to an external hard-drive.
Now that I'm on Ubuntu 10.04 I have no clue how to import my old personal key and the passwords from the backup (my old home folder).
View 3 Replies
View Related
Jan 4, 2011
Lately, I've found 2-3 times an .exe file with a random name in my /home, and another data file with a random name as well. I'm a user of wine, but none of the programs that I use seems to be the cause. Last time it happened I sent it to virustotal.com, and this is the result: [URL].. So, this is clearly a virus. The two files show "nobody" in the proprietary field and "none" as group. What can I do to track down the cause? Also, telepathy-butterfly likes to hog 100% of CPU lately, and all I can do is killing it: is someone exploiting a vulnerability? if so, why the hell would he drop a win32 virus?
View 9 Replies
View Related
Mar 18, 2011
I would like to give a few students a preconfigured Ubuntu USB stick with certain apps. I also encrypted the home folder in case of loss.
With TrueCrypt, cloning an encrypted container would be a big no-no because any one could just backup their header with a known pw and use it to decrypt anyone else's container due to each container using the same master key. I assumes the same applies to home folder encryption, yes?
Is there a way, other than creating a new user with home folder encryption, of forcing a master key change?
View 8 Replies
View Related
Aug 16, 2011
while since I've been here. I'm having an issue with a fresh install of 11.04. Due to work requirements, I encrypted my home folder, which is fine, however, it seems to randomly lock itself down while I'm working, and it's getting really annoying.
Apps stop working, I can't open nautilus (something about not being able to create certain folders because home is locked), hell, even the terminal link on my desktop says failed to launch application (though the launcher on the top panel works). I just have to run ecryptfs-mount-private and enter my password to fix it, but it's doing this every 15 minutes or so. what might cause it to relock itself so frequently? I would expect to not have to deal with mounting my private data, that should happen at login and be good until log out.
View 3 Replies
View Related
Sep 15, 2010
I used ecryptfs on a Private directory. It has about 5GB of data, but no matter what I do I can't free space in there. I have tried to delete some GBs to no avail. System monitor still shows me 5GB.
View 3 Replies
View Related
Mar 21, 2010
Is there a way for my home folder to not be automatically mounted when i log in? And for that matter a way to change the password from my log in password to something else?
View 2 Replies
View Related
May 17, 2010
If I wanted to transfer a home folder that was encrypted to another ubuntu computer could I? If I had a separate home partition that was encrypted, but I wanted to upgrade ubuntu to the latest version by doing a clean install is there an easy way so that I can still read the data encrypted with the old version?
View 5 Replies
View Related
Nov 26, 2010
I logged in to Recover Mode ("Drop to root shell prompt") this morning to do something. Naturally, I wanted access to my encrypted home folder.
The README file says to run ecryptfs-mount-private. However, that command returns an error:
"ERROR: Encrypted private directory is not setup properly."
This cannot be correct, because if I log in normally, I get my home folder without any problem.
How can I access my encrypted home folder when I boot via Recover Mode?
View 2 Replies
View Related
Jan 30, 2011
After buying an IBM/Lenovo USB fingerprint reader model FP06 and installing Fingerprint GUI, have problems to mount my home folder encrypted with eCyptfs. I was using it since the first time i install Ubuntu 10.10 64 bits. After login from GDM, there are some ways to make it work:
1) open a terminal window and type ecryptfs-mount-private. This decrypt the home folder, but need to logout and login again to my personal preferences can be reached (bookmarks in nautilus, in firefox, etc). Each time the PC is rebooted, the same process is needed to made again.
2) before login in GDM, change to a tty1 terminal (ctrl-alt-F1) and login from here. The personal folder decrypt then without problems. Then change to GDM (ctrl-alt-F, login an everything works fine. What could be the fault from GDM to not mount the encrypted folder?
View 8 Replies
View Related
Jan 17, 2010
On a fresh karmic install, I have a user account with ecryptfs enabled home directory. I want that directory to be secured when I log out.
I have two administrator accounts, user1 and user2. I log in as user1 (with ssh, will test regular logins tomorrow), /home/user1/.Private gets mounted to /home/user1, everything is fine. I log out.
I log in as user2, and /home/user1/.Private is indeed unmounted. But I can do
Code:
sudo su - user1
which will ask me for the password of user2, and then I am logged in as user1, /home/user1/.Private is again mounted, without ever typing the password of user1.
On the other hand if I invoke
Code:
ecryptfs-umount-private
[Code]....
View 1 Replies
View Related
Jun 3, 2010
After a disastrous upgrade to 10.04 I am at my wits end trying to recover my /home partition from my unbootable system. The /home partition is part of a RAID5 array across 4 disks and I've been trying to use some disk imaging tools from Ultimate Boot CD to recover it with, but none of the utilities seem to recognize or will let me work with my multi-disk device.
Currently I've been booting up with a Live CD in attempts to mount the encrypted partition then copy all the files to an external device I bought, but the mounting process has presented me with some problems. The partition in encrypted with ecryptfs and I have both the disk's passphrase as well as an FNEK signature to work with. Attempting the following:
Code:
Another small issue is the cipher I used. I don't remember which kind of encryption the disk is encrypted with (80% sure it's aes though). I assume figuring out which cipher I used will be more like a guessing game through the ecryptfs mount prompt, but I'm wondering if this would affect the error message I get.
View 9 Replies
View Related
Aug 24, 2010
I'm getting "Low Disk Space" warnings in Ubuntu 10.04, because of eCryptfs, which somehow manages to eat up twice as much disk space as an unencrypted partition normally would.When I click "Examine" this is the picture that I see:(the blurred out part is my username of course)Why is this happening?And most importantly, what can I do about it?Does Ubuntu expect me to buy twice as much disk space just to encrypt it?!
View 9 Replies
View Related
Oct 19, 2010
This question can be found on the Internet and on this forum but either there is no response or the advice is to move the folder to exclude on another path (in case of using a subfolder for ripped/downloaded mp3).
But in my case my music is on a SAN and I access it through CIFS. So every time I delete a file or folder it goes to the Trash, in a folder called #recycle, which Rhythmbox indexes as well. So I have to delete this folder to avoid duplicates...
Is there any configuration in Rhythmbox to exclude a folder?
I only see a configuration for multiple folders in gconf-editor:
/apps/rhythmbox/library_locations
View 2 Replies
View Related