How to create an encrypted directory shared by multiple system users
Hi,
I would like to create an encrypted folder that is accessible by multiple accounts on the same computer.
I'm a big fan of ecryptfs. I use it in Ubuntu to encrypt our home directories on our home laptop, among other things. There are a number of files that we want to share between our user accounts. Given that the rest of the laptop is securely encrypted, it would be nice if the shared documents were also secure.
My initial thought is that the best way to achieve this is to follow the below steps, but I would be keen for your thoughts:
1) Create a new folder (say /home/shared/).
2) Manually mount this as an ecrypt directory:
sudo mount -t ecryptfs /home/shared /media/shared
3) To automatically mount this for each of us, I would follow the directions here:
https:/
and create a /root/.ecryptfsrc containing:
key=passphrase:
ecryptfs_
ecryptfs_cipher=aes
ecryptfs_
ecryptfs_
ecryptfs_
4) Create a password file at ~/passwd_file.txt:
passphrase_
and copy this to the same location in each user account (which is itself encrypted with the login password).
5) Add a line to fstab:
/home/shared /media/shared ecryptfs defaults 0 0
My questions are:
1) Will this work, particularly the use of the ~ in the path for the password file?
2) Will this cause any problems with the encrypted home directories (ie, will the ecryptfsrc file confuse the ecrypt being used for the home folders)?
2) This seems a bit like a hack. Is there a proper way to do this where the folder is encrypted with to asymmetric keys for both users, or something? I remember seeing something about this in the Ubuntu sprint, but I'm guessing it's a work in process.
Thanks a lot for this great tool!
Question information
- Language:
- English Edit question
- Status:
- Expired
- For:
- eCryptfs Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply: