Difference between revisions of "Mounting Encrypted Home Directories"
(Create page.) |
(Fix path of wrapped passphrase.) |
||
| (3 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
Unwrap the old passphrase to get the mount passphrase: | Unwrap the old passphrase to get the mount passphrase: | ||
| − | ecryptfs-unwrap-passphrase /old/.ecryptfs/''user''/wrapped-passphrase | + | ecryptfs-unwrap-passphrase /old/.ecryptfs/''user''/.ecryptfs/wrapped-passphrase |
| − | Use | + | Use the resulting passphrase whenever the next commands ask you for a passphrase. |
| + | |||
| + | Now generate the kernel session keys: | ||
ecryptfs-add-passphrase --fnek | ecryptfs-add-passphrase --fnek | ||
| Line 12: | Line 14: | ||
mount -t ecryptfs /old/.ecryptfs/''user''/.Private /mnt/old | mount -t ecryptfs /old/.ecryptfs/''user''/.Private /mnt/old | ||
| − | As passphrase enter the mount passphrase from above. Choose <code>aes</code>, <code>16</code>, answer <code>no</code> to plaintext passthrough, <code>yes</code> to filename encryption and | + | As passphrase enter the mount passphrase from above. Choose <code>aes</code>, <code>16</code>, answer <code>no</code> to plaintext passthrough, <code>yes</code> to filename encryption and enter the value I told you to remember earlier. |
Done. | Done. | ||
Latest revision as of 00:22, 26 November 2011
Unwrap the old passphrase to get the mount passphrase:
ecryptfs-unwrap-passphrase /old/.ecryptfs/user/.ecryptfs/wrapped-passphrase
Use the resulting passphrase whenever the next commands ask you for a passphrase.
Now generate the kernel session keys:
ecryptfs-add-passphrase --fnek
The value in brackets on the second line is the one to remember.
Now mount the .Private directory:
mount -t ecryptfs /old/.ecryptfs/user/.Private /mnt/old
As passphrase enter the mount passphrase from above. Choose aes, 16, answer no to plaintext passthrough, yes to filename encryption and enter the value I told you to remember earlier.
Done.
