Difference between revisions of "Mounting Encrypted Home Directories"
(Make it clear that the unwrapped passphrase needs to be specified everywhere from now on.) |
(Fix path of wrapped passphrase.) |
||
| Line 1: | Line 1: | ||
Unwrap the old passphrase to get the mount passphrase: | Unwrap the old passphrase to get the mount passphrase: | ||
| − | ecryptfs-unwrap-passphrase /old/.ecryptfs/''user''/wrapped-passphrase | + | ecryptfs-unwrap-passphrase /old/.ecryptfs/''user''/.ecryptfs/wrapped-passphrase |
Use the resulting passphrase whenever the next commands ask you for a passphrase. | Use the resulting passphrase whenever the next commands ask you for a passphrase. | ||
Latest revision as of 00:22, 26 November 2011
Unwrap the old passphrase to get the mount passphrase:
ecryptfs-unwrap-passphrase /old/.ecryptfs/user/.ecryptfs/wrapped-passphrase
Use the resulting passphrase whenever the next commands ask you for a passphrase.
Now generate the kernel session keys:
ecryptfs-add-passphrase --fnek
The value in brackets on the second line is the one to remember.
Now mount the .Private directory:
mount -t ecryptfs /old/.ecryptfs/user/.Private /mnt/old
As passphrase enter the mount passphrase from above. Choose aes, 16, answer no to plaintext passthrough, yes to filename encryption and enter the value I told you to remember earlier.
Done.
