You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2008-10-31 13:36:34
- Barghest
- Member
- From: Hanau/Germany
- Registered: 2008-01-03
- Posts: 563
Question about encryption
Hi,
I read this article http://wiki.archlinux.org/index.php/LUKS_Encrypted_Root because I'm interested in encrypting my files. I'm not that paranoid that I want to encrypt my whole /. I think encrypting /home is enough for securing my private data, isn't it?
What left me confused was the part "Mapping Partition" where I have to generate a keyfile on my usb-drive. Is this really necessary? Can't I encrypt my /home using a passphrase only?
I know that I'll lose my data while encrypting /home due to formating but is there a way to encrypt a partition without cp -a /backup /home after? In short words: encrypt without formating?
Thanks!
Offline
#2 2008-10-31 13:45:10
- arch0r
- Member
- From: From the Chron-o-John
- Registered: 2008-05-13
- Posts: 597
Re: Question about encryption
you can use a simple passphrase or a keyfile (eg on your usb stick) to decrypt the partition.
no, it's not possible to encrypt your home partition without formating!
make a backup of /home, encrypt the partition, decrypt it, create the filesystem, copy the files back on the decrypted partition, edit the /etc/fstab file. that's all (only a rough description). for further information check out the forum and the wiki :>
Last edited by arch0r (2008-10-31 13:48:06)
Offline
#3 2008-10-31 13:47:15
- Barghest
- Member
- From: Hanau/Germany
- Registered: 2008-01-03
- Posts: 563
Re: Question about encryption
Thanks for the prompt and clear answer.
Am I correct when I say "encrypting only /home is enough to secure my private data"?
Offline
#4 2008-10-31 13:49:39
- arch0r
- Member
- From: From the Chron-o-John
- Registered: 2008-05-13
- Posts: 597
Re: Question about encryption
if all of your private data is stored under /home, yes.
Offline
#5 2008-10-31 13:58:13
- Barghest
- Member
- From: Hanau/Germany
- Registered: 2008-01-03
- Posts: 563
Re: Question about encryption
Hmm, I hope so (and that there is no backdoor) 
Thanks again
Offline
#6 2008-10-31 14:33:07
- moljac024
- Member
- From: Serbia
- Registered: 2008-01-29
- Posts: 2,676
Re: Question about encryption
How about creating a /data partition and storing all sensitive data there ?
You only need decrypt it when you want to, as opposed to /home, where almost every app needs access and you have a lot of config files, which I see no reason to encrypt.
Last edited by moljac024 (2008-10-31 14:33:59)
The day Microsoft makes a product that doesn't suck, is the day they make a vacuum cleaner.
--------------------------------------------------------------------------------------------------------------
But if they tell you that I've lost my mind, maybe it's not gone just a little hard to find...
Offline
#7 2008-10-31 14:42:14
- Barghest
- Member
- From: Hanau/Germany
- Registered: 2008-01-03
- Posts: 563
Re: Question about encryption
I didn't understood the wiki article as it was a problem, when other apps need access to the partition (e.g. openbox or even openoffice).
If that's the case I'll think about a /data partition. But I guess this might be better realized with truecrypt (?)
I would be more comfortable if I could edit the files directly though.
Offline
Pages: 1