Ubuntu
firefox package

eCryptfs private folder advice needed please

Asked by meow

Hi

I just made a new private folder using eCryptfs on a already existing 9.10 user account. That is the private folder was not made during the live cd installation but after.

I already used sudo to not automatically decrypt the private folder when i log in-but how do i change the password?-at the moment the password is the same as my login passphrase

I have read that the default encryption strength is AES 128 bit-is this correct and if so how secure is this?

Also if i had reinstalled ubuntu 9.10 in the first place with the option to “Require a password to log in and decrypt your home folder” would the entire home folder be encrypted-including desktop, downloads and music?

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu firefox Edit question
Assignee:
No assignee Edit question
Solved by:
Soul-Sing
Solved:
Last query:
Last reply:
Revision history for this message
meow (accessdeniedno) said : 		#1

Ok i just did 'mount | grep "$USER.*ecryptfs' in sudo to see if my private folder was mounted and i got the following back

shinji@shinji-laptop:~$ mount | grep "$USER.*ecryptfs
>
> mount | grep "$USER.*ecryptfs
 /dev/sdb1 on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw)
none on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type tmpfs (rw,mode=0755)
none on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /dev/shm type tmpfs (rw,nosuid,nodev)
none on /var/run type tmpfs (rw,nosuid,mode=0755)
none on /var/lock type tmpfs (rw,noexec,nosuid,nodev)
none on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,noexec,nosuid,nodev)
gvfs-fuse-daemon on /home/shinji/.gvfs type fuse.gvfs-fuse-daemon (rw,nosuid,nodev,user=shinji)
/dev/sr0 on /media/cdrom0 type udf (ro,nosuid,nodev,utf8,user=shinji)
/home/shinji/.Private on /home/shinji/Private type ecryptfs (ecryptfs_sig=90ccff8ec6e6da25,ecryptfs_fnek_sig=db53049cd28676dd,ecryptfs_cipher=aes,ecryptfs_key_bytes=16)
shinji@shinji-laptop:~$

Is this normal-did i do anything dangerous like enable the root profile or allow my home folder to be accessed by anyone on the internet?

Revision history for this message
Soul-Sing (soulzing) said : 		#2

there is no better howto ecryptfs: http://bodhizazen.net/Tutorials/Ecryptfs/
!) automagically (encryption/decryption during logout-login)
2) your own private folder with ecryptfs

Revision history for this message
Sam_ (and-sam) said : 		#3

> AES 128 bit ...how secure
http://en.wikipedia.org/wiki/Advanced_Encryption_Standard

> decrypt your home folder
> entire home folder
yep, it means the content of /home/user

https://help.ubuntu.com/community/EncryptedPrivateDirectory

Revision history for this message
Best Soul-Sing (soulzing) said : 		#4

Is the question solved, or are there any qustions left?

Revision history for this message
meow (accessdeniedno) said : 		#5

Thanks leoquant, that solved my question.